Solera Networks Undergoes Rigorous Common Criteria Evaluation Process
May 31st, 2011
Common Criteria EAL 3+ certification validates company’s commitment to delivering trusted network security innovation to combat today’s evolving threats
Salt Lake City, UT – May 31, 2011 Solera Networks, a leading network forensics products company, today announced that the Solera DS Series of Network Forensics Appliances are officially in evaluation for an EAL 3+ certification. Common Criteria evaluation of security products is mandated for commercial information security products purchased by the U.S. government for use in national security systems, and is often cited as a requirement by government customers around the world. This rigorous evaluation process illustrates the company’s commitment to providing the highest quality assurance to its customers.
“Our government customers have the world’s most targeted networks and clearly understand today’s new threat environment,” said Peter Schlampp, VP of Product Management and Marketing, Solera Networks. “They look to us for Network Forensics products capable of 24/7 real-time surveillance and complete network visibility so they can immediately identify security issues and defend their networks. Meeting the stringent requirements for Common Criteria certification is validation our Network Forensics platform is ideal for both government agencies and enterprises worldwide.”
To facilitate the prompt completion of the Common Criteria evaluation process, Solera Networks has partnered with Corsec Security, a consulting firm with more than thirteen years of validation experience.
“Solera Networks’ dedication to providing a high level of security on their DS line of network forensics appliances is apparent in their commitment to the Common Criteria evaluation process,” said Matthew Appler, CEO of Corsec Security. “Corsec is highly impressed with their solution and we look forward to continuing to assist them in achieving their validation goals.”
Common Criteria is an internationally recognized set of guidelines (ISO 15408), which define a common framework for evaluating security features and capabilities of Information Technology security products. The standard consists of several predetermined evaluation assurance levels, each one more stringent than the previous. Common Criteria allows vendors to have their products tested against a chosen level by an independent third-party testing laboratory. Solera DS Series certification is under the Canadian Communications Security Establishment (CSEC), Canada’s Common Criteria Evaluation and Certification Scheme (CCS). The Common Criteria Mutual Recognition Agreement (CCRA) is a pact that was designed to allow all evaluations up to an evaluation assurance level (EAL) 4, to be recognized by all participating countries, regardless of where the evaluation was completed. There are currently 26 countries involved in the CCRA, including the United States and Canadian governments, with others that follow unofficially such as the EU.
Common Criteria certification of security products is mandated by the U.S. government for federal purchases. The National Information Assurance Acquisition Policy, NSTISSP No. 11, requires agencies to purchase only those commercial security products that have met specified third-party assurance requirements and have been tested by an accredited national laboratory. Common Criteria certification is one of the highest internationally recognized set of guidelines for evaluating security features and capabilities of products. This certification gives organizations critical assurance that a product meets the most stringent security standards.
Solera Networks is completing a successful rigorous beta testing of the latest platform release, Solera OS v5.0. For a 30-day trial of the Solera DS Virtual Appliance visit www.soleranetworks.com
To learn more about Common Criteria, go to www.commoncriteriaportal.org.
To see the list of all products currently undergoing evaluation within the Canadian Common Criteria Evaluation and Certification Scheme, including Solera Networks, go to www.cse-cst.gc.ca/its-sti/services/cc/oe-pece-eng.html
About Corsec Security, Inc.
Corsec Security, Inc. specializes in helping companies navigate through the complex process of receiving FIPS 140-2 and Common Criteria (CC) certifications. Corsec’s consulting, document creation, and project management services deliver unmatched expertise in achieving government validation efforts at a firm, fixed price. Corsec partners with companies around the world to achieve local and international certification and to add security functionality to a wide range of products. Corsec minimizes the time, effort and money a vendor needs to invest in validation while ultimately maximizing the return on that investment. For further information, please visit www.corsec.com.