NIAP Approved Common Criteria Testing Laboratories (CCTL)
NIAP approved Common Criteria Testing Laboratories (CCTLs) are IT security testing laboratories that are accredited by the NIST National Voluntary Laboratory Accreditation Program (NVLAP) and meet CCEVS-specific requirements to conduct IT security evaluations for conformance to the Common Criteria for Information Technology Security Evaluation, International Standard ISO/IEC 15408.
| Lab Name | Lab POC | NVLAP Lab Code | Test Methods |
|---|---|---|---|
| This list was generated on Sunday, May 26th, 2013 at 2:49AM | |||
|
Approved Lab International *, MD * |
NIAP 410-854-4458 (phone) niap@niap-ccevs.org |
* | * |
|
atsec information security corporation
9130 Jollyville Road Suite 260 Austin, TX 78759 |
Mr. Ken Hake 512-615-7378 (phone) 512-615-7301 (fax) ccinquiry@atsec.com |
200658-0 | APE, ASE, EAL1, EAL2, EAL3 and EAL4 |
|
Booz Allen Hamilton Common Criteria Testing Laboratory
900 Elkridge Landing Road Suite 100 Linthicum, MD 21090 |
Mr. Chris Gugel 410-684-6697 (phone) 410-850-4592 (fax) catl@bah.com |
200423-0 | APE, ASE, EAL1, EAL2, EAL3 and EAL4 |
|
COACT Inc. CAFE Laboratory
9140 Guilford Road Suite N Columbia, MD 21046-2585 |
Mr. Brian Pleffner 301.498.0150 x207 (phone) 301.498.0855 (fax) bkp@coact.com |
200416-0 | APE, ASE, EAL1, EAL2, EAL3 and EAL4 |
|
Computer Sciences Corporation
7231 Parkway Drive, Room 331 Hanover, MD 21076 |
Mr. Charles Nightingale 410-684-6411 (phone) 410-684-6413 (fax) cnightin@csc.com |
200426-0 | APE, ASE, EAL1, EAL2, EAL3 and EAL4 |
|
CygnaCom Solutions, Inc
7925 Jones Branch Drive Suite 5400 McLean, VA 22102-3378 |
Ms. Nithya Rachamadugu 703-270-3563 (phone) 703-848-0985 (fax) selinfo@cygnacom.com |
200002-0 | APE, ASE, EAL1, EAL2, EAL3 and EAL4 |
|
InfoGard Laboratories, Inc.
709 Fiero Lane Suite 25 San Luis Obispo, CA 93401 |
Mr. Steve Wilson 805.783.0810 (phone) 805.783.0889 (fax) swilson@infogard.com |
100432-0 | APE, ASE, EAL1, EAL2, EAL3 and EAL4 |
|
SAIC Common Criteria Testing Laboratory
6841 Benjamin Franklin Drive Suite 400 Columbia, MD 21046 |
Mr. Amit Sharma 443-367-7733 (phone) 443-367-7970 (fax) Amit.Sharma@saic.com |
200427-0 | APE, ASE, EAL1, EAL2, EAL3 and EAL4 |
|
United Kingdom
Room A2j Hubble Road Cheltenham GL, MD 510EX |
* * (phone) * |
* | * |
These laboratories must meet the requirements of:
- NIST Handbook 150, NVLAP Procedures and General Requirements;
- NIST Handbook 150-20, NVLAP Information Technology Security Testing - Common Criteria;
- Specific criteria for IT security evaluations and other requirements of the scheme as defined by the NIAP Validation Body.
CCTLs enter into contractual agreements with sponsors to conduct security evaluations of IT products and protection profiles using NIAP-approved test methods derived from the Common Criteria, Common Methodology and other technology-based sources. The IT security evaluations are carried out in accordance with the policies and procedures of the scheme. CCTLs must observe the highest standards of impartiality, integrity, and commercial confidentiality, and operate within the guidelines established by the scheme.
To become a CCTL, a testing laboratory must go through a series of steps that involve both the NIAP Validation Body and NVLAP. Accreditation by NVLAP is the primary requirement for achieving CCTL status. Scheme requirements that cannot be satisfied by NVLAP accreditation are addressed by the NIAP Validation Body. At present, there are only three scheme-specific requirements imposed by the Validation Body. NIAP approved CCTLs:
- must reside within the U.S. and be a legal entity, duly organized and incorporated, validly existing, and in good standing under the laws of the state where the laboratory intends to do business;
- must agree to accept U.S. Government technical oversight and validation of evaluation-related activities in accordance with the policies and procedures established by the NIAP Common Criteria Scheme;
- must agree to accept U.S. Government participants in selected Common Criteria evaluations conducted by the laboratory in accordance with the policies and procedures established by the NIAP Common Criteria Scheme.
A testing laboratory becomes a CCTL when the laboratory is approved by the Validation Body and is listed on the NIAP Approved Laboratories List.
To avoid unnecessary expense and delay in becoming a NIAP-approved testing laboratory, it is strongly recommended that prospective CCTLs ensure that they are able to satisfy the scheme-specific requirements prior to seeking accreditation from NVLAP. This can be accomplished by sending a letter of interest to the NIAP Validation Body prior to entering the NVLAP process.
Additional laboratory-related information can be found in Scheme Publication #1 Common Criteria Evaluation and Validation Scheme for Information Technology Security -- Organization, Management, and Concept of Operations and Scheme Publication #4 Common Criteria Evaluation and Validation Scheme for Information Technology Security -- Guidance to Common Criteria Testing Laboratories.
SEARCH CCEVS
Announcements
Quick Links
» Product Compliant ListAvailable products to assist in making a more secure infrastructure.
» Approved Protection ProfilesApproved protection profiles for use by vendors.
» NIAP Technical CommunitiesNIAP Technical Communities are key to the development of new Protection Profiles.
» Find an Accredited LabFind a lab to evaluate your product.
» NIAP FAQsFind answers to commonly asked questions.
» Getting AccreditedHow to become an NVLAP Accredited Lab.
