The National Information Assurance Partnership (NIAP) is responsible for U.S. implementation of the Common Criteria, including management of the NIAP Common Criteria Evaluation and Validation Scheme (CCEVS) validation body.
NIAP manages a national program for developing Protection Profiles, evaluation methodologies, and policies that will ensure achievable, repeatable, and testable requirements.
In partnership with NIST, NIAP also approves Common Criteria Testing Laboratories to conduct these security evaluations in private sector operations across the U.S.
NIAP takes a collaborative approach to technology-specific protection profile development by supporting the creation of international technical communities of representatives from industry, government, end users, and academia.
This results in consistent evaluation methodologies across U.S. testing labs and among labs associated with international Common Criteria Recognition Arrangement schemes.
NIAP also works with NATO and international standards bodies (ISO) to share Common Criteria evaluation experiences and avoid duplication of effort.
In the U.S., NIAP engages with other National Security Systems (NSS) users to ensure Protection Profiles, along with their associated DoD Annexes, provide a streamlined certification path for IA and IA enabled COTS products employed with NSS.
Position Statement on the CC in the Cloud Working Group
The National Information Assurance Partnership, Canadian Common Criteria Scheme, and Australian Certification Authority have issued a joint position statement in support of the CC in the Cloud Working Group and its CC in the Cloud Essential Security Requirements (ESR), v0.3, dated 2 March 2022.
The Position Statement is posted on the NIAP website on its Publications page and can be found here: https://www.niap-ccevs.org/MMO/GD/C...
PP-Modules for WLAN Client v1.0 and WLAN AS v1.0 Published!
The National Information Assurance Partnership/Common Criteria Evaluation and Validation Scheme (NIAP/CCEVS) is pleased to announce the posting of the Protection Profile-Modules for Wireless LAN Access System (WLAN AS) and Wireless LAN Client (WLAN Client) PP-Modules v1.0. These updates include the conversion to Module, incorporation of Wi-...
PP-Modules for VPN Client v2.4 and VPN Gateways v1.2 Published!
The National Information Assurance Partnership/Common Criteria Evaluation and Validation Scheme (NIAP/CCEVS) is pleased to announce the posting of the Protection Profile-Modules for Virtual Private Network (VPN) Client, Version 2.4 and VPN Gateways, Version 1.2. This is a minor update to incorporate two-factor authentication and incorporates all applicable Technical Decisions.
Want more news?