Four atsec customers received Common Criteria certifications at the 10th ICCC
2009-09-25
Tromsø, Norway - atsec information security is proud to announce that several of their key customers have been awarded Common Criteria certificates for their complex IT products at the 10th International Common Criteria Conference in Tromsø, Norway.
Certificates were awarded to:
- IBM for z/OS Version 1 Release 10
- Oracle for Oracle Database 11g Enterprise Edition, Release 11.1.0.7 with Oracle Label Security
- Microsoft for Windows Server 2008 Hyper-V Role with HotFix KB950050
All of these products were evaluated at the highest commercial level (EAL4+).
In addition, IEEE, working with atsec, completed the validation of an innovative protection profile for printers (IEEE 2600™, "STANDARD FOR INFORMATION TECHNOLOGY: HARDCOPY SYSTEM AND DEVICE SECURITY”).
Gerald Krummeck, Common Criteria Laboratory Manager for atsec, notes: “In addition to demonstrating atsec’s leadership in the security IT industry, evaluating large and complex software products is also significant test of the Common Criteria standard itself. By successfully evaluating these products, we show how well the CC standard can be applied to a variety of technologies of differing size and complexity."
With this latest award ceremony, atsec has again shown that it is the lab of choice for complex and innovative evaluations at the highest level of assurance.
About atsec information security
atsec information security is an independent, standards-based information technology security services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec was founded in Munich (Germany) in 2000 and has extensive international operations with offices in the U.S., Germany, Sweden and China.
atsec offers evaluation and testing services leading to formal certification for IT security including evaluation under Common Criteria schemes in the U.S., Germany, and Sweden; cryptographic module and algorithm testing under the Cryptographic Module Validation Program of the National Institute of Standards and Technology (NIST) in the U.S. and Communications Security Establishment Canada (CSEC) in Canada; and compliance validation to the Payment Card Industry (PCI) Data Security Standard.
atsec also offers secure code review, ISO/IEC 27001 ISMS consulting, and penetration testing and scanning services.
atsec works with leading global companies such as IBM, Apple, Microsoft, Hewlett-Packard, Oracle, Cray, BMW, SGI, Vodafone, RWE, and Wincor-Nixdorf.
