Common Criteria is an internationally recognised set of guidelines (ISO 15408), which define a common framework for evaluating security features and capabilities of Information Technology products. The standard consists of several predetermined evaluation assurance levels, each one more stringent than the last. Common Criteria allows vendors to have their products tested against a chosen level by an independent third-party testing laboratory. The Common Criteria Mutual Recognition Agreement (CCRA) is a pact, which was designed to allow all evaluations up to an EAL 2 to be recognised by all participating countries, regardless of where the evaluation was completed. There are currently 28 countries involved in the CCRA, including the United States, Canada, the UK, Germany, and some other EU countries.
“The completion of the Common Criteria certification process for the VirtualWisdom Platform Appliance demonstrates Virtual Instruments’ commitment to product security, giving federal agencies and regulated industries the ability to purchase a third-party-tested, verified, and trusted hybrid infrastructure management solution,” said Jake Nelson, Corsec Security, Inc. Director of Marketing. Corsec, the global leader in product security requirements hardening, assisted Virtual Instruments with its Common Criteria evaluation and helped streamline the certification effort.
The U.S. government mandates Common Criteria certification of security products for federal purchases. Through the NSTISSP No. 11, federal agencies are required to purchase only those commercial security products that have met specified third-party assurance requirements and have been tested by an accredited national laboratory.
“Federal government agencies rightfully place a premium on the security of their constituents’ data and information, and expect their hybrid infrastructure solution providers to assure the highest level of security in their products,” said Jay Lambke, President, Government Acquisitions, Inc. “With Virtual Instruments’ Common Criteria certification, our federal agency customers gain invaluable peace of mind that they are in compliance with the world’s most stringent security requirements.”
“The Common Criteria certification is a significant achievement for Virtual Instruments, as it provides our customers with invaluable third-party assurance that the VirtualWisdom platform meets the most stringent security requirements,” said Jeff Jordan, VP of Federal Sales, Virtual Instruments. “The certification underscores our commitment to delivering industry-leading solutions – validated through a rigorous testing process – to the U.S. and other international federal government agencies. In addition, this certification further illustrates the completeness of our hybrid IT infrastructure management solutions versus competitive offerings that lack certification.”