Common Criteria Archives - Corsec Security, Inc.®

Fed Roundup: September 2022

Jake Nelson — Mon, 03 Oct 2022 19:39:20 +0000

Announcements:

Caroline Bean is the new Senior Executive Service at DISA Headquarters

STIG Updates:

Microsoft Windows Server 2022 Security Technical Implementation Guide
SPEC Innovations Innoslate 4.x Security Technical Implementation Guide
Draft Windows 11 Security Technical Implementation Guide Security Content Automation Protocol (SCAP) benchmark
Security Technical Implementation Guide Viewer 2.17 and the STIG Viewer User Guide

Updates & Announcements:

Special Publications:

Updates & Announcements:

None

Protection Profile Posting:

###

Connect With Us:

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements – Subscribe

Press Contact:

Jake Nelson
Dir of Marketing
Jnelson@corsec.com

Fed Roundup: August 2022

Jake Nelson — Thu, 01 Sep 2022 14:49:39 +0000

Announcements:

Updates & Announcements:

None

Special Publications:

Updates & Announcements:

2nd Quarter Progress Report

Protection Profile Posting:

None

###

Connect With Us:

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements – Subscribe

Press Contact:

Jake Nelson
Dir of Marketing
Jnelson@corsec.com

Fed Roundup: July 2022

Jake Nelson — Tue, 02 Aug 2022 13:54:46 +0000

Announcements:

The DISA Fourth Estate Network Optimization program office began migrating the Defense POW/MIA Accounting Agency from its legacy information technology network to the newly modernized IT network, DODNet
Marine Corps Col. Jared C. Voneida takes command of the Defense Information Systems Agency Pacific Regional Field Command
U.S. Army Col. Diane E. Klein takes command of the Defense Information Systems Agency Europe Field Command
Air Force Chief Master Sgt. David P. Klink retires

Updates & Announcements:

Four Post-Quantum Cryptography candidates have been announced for standardization, as well as additional candidates for a fourth round of analysis

Special Publications:

Draft 800-221A, Information and Communications Technology (ICT) Risk Outcomes: Integrating ICT Risk Management Programs with the Enterprise Risk Portfolio
Draft SP 800-221, Enterprise Impact of Information and Communications Technology Risk: Governing and Managing ICT Risk Programs Within an Enterprise Risk Portfolio
Draft SP 800-66r2 (Revision 2), Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide
Draft Project Description, Software Supply Chain and DevOps Security Practices: Implementing a Risk-Based Approach to DevSecOps
Internal Report 8235, “Security Guidance for First Responder Mobile and Wearable Devices.”
SP 800-171, -171A, -172, and -172A
SP 800-53 Rev. 5

Updates & Announcements:

Protection Profile Posting:

None

###

Connect With Us:

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements – Subscribe

Press Contact:

Jake Nelson
Dir of Marketing
Jnelson@corsec.com

Fed Roundup: June 2022

Jake Nelson — Wed, 29 Jun 2022 20:20:56 +0000

Announcements:

Updates & Announcements:

None

Special Publications:

Updates & Announcements:

None

Protection Profile Posting:

None

###

Connect With Us:

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements – Subscribe

Press Contact:

Jake Nelson
Dir of Marketing
Jnelson@corsec.com

Fed Roundup: May 2022

Jake Nelson — Wed, 01 Jun 2022 17:23:06 +0000

Announcements:

Updates & Announcements:

None

Special Publications:

Updates & Announcements:

NIAP and other schemes have issued a statement in support of the CC content in the Cloud WG and its CC in the Cloud Essential Security Requirements (ESR), v0.3

Protection Profile Posting:

None

###

Connect With Us:

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements – Subscribe

Press Contact:

Jake Nelson
Dir of Marketing
Jnelson@corsec.com

Fed Roundup: April 2022

Jake Nelson — Tue, 03 May 2022 16:58:27 +0000

Announcements:

Updates & Announcements:

None

###

Connect With Us:

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements – Subscribe

Press Contact:

Jake Nelson
Dir of Marketing
Jnelson@corsec.com

Fed Roundup: March 2022

Jake Nelson — Thu, 31 Mar 2022 15:12:50 +0000

Announcements:

Updates & Announcements:

None

Special Publications:

Updates & Announcements:

None

Protection Profile Posting:

Virtual Private Network (VPN) Client, Version 2.4 and VPN Gateways, Version 1.2

###

Connect With Us:

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements – Subscribe

Press Contact:

Jake Nelson
Dir of Marketing
Jnelson@corsec.com

Pensando Completes Common Criteria EAL2+ Certification

Jake Nelson — Fri, 11 Mar 2022 15:35:13 +0000

Corsec would like to congratulate our partner Pensando Systems, Inc. on completing the Common Criteria certification process for their Distributed Services Platform v1.28.0-E-96. Pensando and Corsec worked together to complete this custom security target EAL2+ Common Criteria evaluation under the Italian Scheme.

For more information on the evaluation and to find additional details on their security target, visit the Common Criteria Certified Products List.

About Common Criteria

Common Criteria is an internationally recognized set of guidelines (ISO 15408), which define a common framework for evaluating security features and capabilities of Information Technology security products. The standard consists of several predetermined evaluation assurance levels, each one more stringent than the last. Common Criteria allows vendors to have their products tested against a chosen level by an independent third-party testing laboratory. The Common Criteria Mutual Recognition Agreement (CCRA) is a pact, which was designed to allow all evaluations up to an evaluation assurance level (EAL) 2, to be recognized by all participating countries, regardless of where the evaluation was completed. There are currently 31 countries involved in the CCRA, including the United States and Canada, with others that follow unofficially such as the EU. The U.S. government mandates Common Criteria certification of security products for federal purchases. The National Information Assurance Acquisition Policy, NSTISSP No. 11, requires agencies to purchase only those commercial security products that have met specified third-party assurance requirements and have been tested by an accredited national laboratory.

About Pensando’s Distributed Services Platform

Pensando Systems, Inc. is pioneering the new edge services model of enterprise and cloud computing. The Pensando Distributed Services Platform delivers highly programmable software-defined cloud, compute, networking, storage and security services wherever data is located.

For more information on the DSP, visit Pensando’s website.

About Corsec Security, Inc.

For over two decades Corsec has assisted companies through the IT security certification process for FIPS 140-2 / FIPS 140-3, Common Criteria (CC) and the DoD’s APL (JITC). We are a privately-owned company focused on partnering with organizations worldwide to assist with the process of security certifications and validations. Our certification methodology helps open doors to new markets and increase revenue for clients with products ranging from mobile phones to satellites. Our broad knowledge safeguards against common pitfalls and thwarts delays, translating to a swift and seamless path to certification. Corsec has created the benchmark for providing business leaders with fast, flexible access to industry knowledge on security certifications and validations.