Common Criteria is an independent security certification recognized by governments in more than 26 countries, including the United States. Certification is granted when a Common Criteria testing laboratory, such as EWA-Canada, determines that a product meets a defined measure of security. The certification addresses product functionality, development environment, documentation and product testing measures.
“CA continues to support Common Criteria evaluations as a measurement of security capabilities,” said Bill Clark, vice president, Public Sector Technical Sales, CA Technologies. “We understand the importance of third-party assurance, such as this certification, and are proud to have our identity and access management portfolio so well-represented on the certified products list.”
CA Directory is a large-scale user directory that delivers the availability, reliability, and scalability needed for today’s online applications. This includes providing the performance needed for efficient read and write operations, transparent distribution and replication.
The CA Directory r12 sp3 evaluation was performed on the Oracle Solaris 10 and Windows Server 2003 operating system SP2 platforms at EWA-Canada’s Common Criteria Evaluation Facility. EWA is one of only three labs approved by the CSEC that meet the Canadian Common Criteria Scheme lab requirements. These labs conduct IT security evaluations to determine conformance to the Common Criteria for Information Technology Security Evaluation, International Standard ISO/IEC 15408.
Recent CA Technologies Common Criteria evaluations include CA Federation Manager r12 SP1 deployed on CA SiteMinder* and CA Identity Manager r12.5. CA security products currently in evaluation for the mainframe platform include CA ACF2™ r14 and CA Top Secret® r14.
*Formerly named: CA SiteMinder Federation Security Services r12 SP1
About Common Criteria
The National Institute of Standards and Technology (NIST) and the National Security Agency (NSA) established the National Information Assurance Partnership (NIAP) to evaluate IT product conformance to the Common Criteria for Information Technology Security Evaluation, an international standard. The program, officially known as the NIAP Common Criteria Evaluation and Validation Scheme (CCEVS) is a partnership between the public and private sectors to help organizations select commercial off-the-shelf information technology (IT) products that meet their security requirements and to help manufacturers of those products gain acceptance in the global marketplace. Twenty-six countries now recognize the Common Criteria as third-party evaluation criteria for IT security procedures.
About EWA Canada
EWA-Canada (www.ewa-canada.com) is Canada’s premier Information Assurance consulting firm specializing in IT Security Engineering, Managed Security Services and independent third-party evaluation and testing of products in its Common Criteria, FIPS 140 2 Cryptographic Module and Security Content Automation Protocol test labs. EWA-Canada is recognized for its comprehensive experience with Common Criteria evaluations, enabling companies to efficiently and cost-effectively manage the evaluation process thereby ensuring their products meet important certification requirements. For further information please visit us at www.ewa-canada.com/studies/it_security.php.