atsec

The information security provider.
homesitemapblog
  • Services
  • Company
  • News & Events
  • Resources
  • Contact
Deutsch | 汉语

Product Evaluation
and Testing
Common Criteria (ISO/IEC 15408)
FIPS 140-2
Cryptographic Algorithm Testing
SCAP
NPIVP Testing
Biometrics Testing
GSA PIV Evaluation (FIPS 201)

Compliance and Audit
ISO/IEC 27001
SOX and Euro-SOX
FISMA Certification Support
HIPAA and HITECH
NASPO

Consulting and Training
VTDR for GSA FIPS 201
Embedded Systems
Hardware Security Testing and Analysis
Penetration Testing
PCI Consulting
US Export Control for Cryptography
Training

 back to the list of services
 

Vendor Test Data Report for GSA FIPS 201 EP Evaluation

What atsec offers

When vendor testing is required by the GSA FIPS 201 Evaluation Program (EP), a Vendor Test Data Report (VTDR) must be produced prior to a product or service's submission for GSA EP approval. The VTDR demonstrates the product or services compliance to FIPS 201 as required by the associated GSA EP approval procedure. atsec has the expertise needed to perform the testing required to produce the VTDR.

Why our services are important to you

In August 2004, Homeland Security Presidential Directive 12 (HSPD-12) established requirements for identification and authentication of federal employees and contractors accessing federal facilities and information systems. FIPS 201: Personal Identity Verification of Federal Employees and Contractors was developed to satisfy the requirements of HSPD-12. Hardware and software vendors must validate product or service compliance with FIPS 201, which is a requirement for federal agencies that implement compliant solutions per HSPD-12. Before submitting products or services for validation, FIPS 201-specific tests must be performed by vendors as mandated by GSA FIPS 201 EP approval procedures. Test results must then be documented in a technical report, the VTDR. The GSA Evaluation Program approval procedures document the following 25 product and service categories that require a VTDR as part of the application package for evaluation:

  • Biometric Authentication System
  • Caching Status Proxy
  • CAK Authentication System
  • Card Reader – Authentication Key
  • Card Reader – Biometric
  • Card Reader – Biometric Authentication
  • Card Reader – CHUID (Contact)
  • Card Reader – CHUID (Contactless)
  • Card Reader – CHUID Authentication Reader (Contact)
  • Card Reader – CHUID Authentication Reader (Contactless)
  • Card Reader – Transparent
  • Certificate Validator
  • CHUID Authentication System
  • Electromagnetically Opaque Sleeve
  • Electronic Personalization (Product)
  • Electronic Personalization (Service)
  • Facial Image Capturing (Middleware)
  • Facial Image Capturing Camera
  • Fingerprint Capture Station
  • Graphical Personalization Service
  • OCSP Responder
  • PIV Authentication System
  • PIV Card
  • SCVP Client
  • SCVP Client (Without Authentication)

For more information

Please refer to our resource pages.

 

(c) 2012 atsec information security | Legal Notice | Data Protection Notice | Environmental Policy | Security Policy |  atsec IT security blog atsec on facebook atsec on twitter atsec on LinkedIn atsec on digg.com