NIAP: NIAP CCEVS Announcements
NIAP/CCEVS
  NIAP  »»  Announcements  »»  NIAP Announcements  
NIAP Announcements

  NIAP Endorses NDcPP v2.1 (12 March 2019)

NIAP has endorsed the Network Device collaborative Protection Profile v2.1 (NDcPP v2.1) and published the cPP and Supporting Documents to the NIAP-Approved PP List.  This endorsement is a formal statement that products successfully evaluated against the ND cPP that demonstrate exact conformance to the cPP, and in compliance with all NIAP policies, will be placed on the NIAP Product Compliant List. This version succeeds Version 2.0E which will sunset effective 10 September 2019. 

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann212

  Application Software v1.3 Protection Profile Published (01 March 2019)

The National Information Assurance Partnership/Common Criteria Evaluation and Validation Scheme (NIAP/CCEVS) is pleased to announce the posting of the Protection Profile for Application Software, Version 1.3. The PP updates include Technical Decisions resulting from prior completed evaluations, incorporation of the TLS Functional Package, and the addition of an equivalency section. This PP can be found here: https://www.niap-ccevs.org/Profile/Info.cfm?PPID=429&id=429

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann210

  Functional Package for Transport Layer Security (TLS) Version 1.1 Published (01 March 2019)

 

The National Information Assurance Partnership/Common Criteria Evaluation and Validation Scheme (NIAP/CCEVS) is pleased to announce the posting of the Functional Package for Transport Layer Security (TLS) Version 1.1. This minor version update is limited to clarifications regarding override for invalid certificates, renegotation_info extension, DTLS versions, and named Diffie-Hellman groups in DTLS contexts. Given the minimal changes, this version replaces Version 1.0 which has been sunset, effective immediately. As new and updated PPs/PP-Modules are published, they will make use of this TLS package, where applicable.

 

 Please follow this link for more information: https://www.niap-ccevs.org/Profile/Info.cfm?PPID=439&id=439

 

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann211

  FDE EE cPP v2.0 and FDE AA cPP v2.0 Erratas Published (07 February 2019)

The Full Drive Encryption (FDE) international Technical Community (iTC) has published Errata versions of the FDE Encryption Engine (EE) Collaborative Protection Profile (cPP) v2.0, FDE EE Supporting Document (SD) v2.0,  FDE Authorization Acquisition (AA) cPP v2.0, and FDE AA SD v2.0. The Errata versions replace the v2.0 documents with immediate effect. Therefore, NIAP has published the Errata versions and archived the FDE EE cPP v2.0, FDE EE SD v2.0, FDE AA cPP v2.0, and FDE AA SD v2.0.

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann209

Previous Announcements

  Functional Package for Transport Layer Security (TLS) Version 1.0 Published (17 December 2018)

 

The National Information Assurance Partnership/Common Criteria Evaluation and Validation Scheme (NIAP/CCEVS) is pleased to announce the posting of the Functional Package for Transport Layer Security (TLS) Version 1.0. As new and updated PPs/PP-Modules are published, they will make use of this TLS package, where applicable.

 

Please follow the below link for more information:

 

https://www.niap-ccevs.org/Profile/Info.cfm?PPID=426&id=426

 

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann208

  NIAP Office Closed on Mondays (20 November 2018)

The NIAP office will be closed on Mondays, effective immediately and until further notice.   NIAP personnel will be unavailable and unable to engage with stakeholders and the wider CC community but will make every effort to reply quickly when the office reopens. NIAP apologizes for any inconvenience this may cause and thanks you, in advance, for your patience and understanding.

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann207

  NIAP Progress Report – Third Quarter 2018 (05 November 2018)

See the NIAP Third Quarter Progress Report to learn about recent NIAP accomplishments and activities, and upcoming releases.

Read the report here.

 

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann206

  Call for Participants for Mobile Device Management Technical Community (22 August 2018)

 

The National Information Assurance Partnership/Common Criteria Evaluation and Validation Scheme (NIAP/CCEVS) is pleased to invite interested parties to be part of a Technical Community (TC) for the update of the Protection Profile for Mobile Device Management.  Members of this TC are expected to provide technical input to the development of a Protection Profile update containing the baseline Security Functional Requirements (SFRs) for Mobile Device Management. 

 

Please note: If you are already a member of this Technical Community, there is no need to re-apply.

 

 

All interested parties should contact NIAP/CCEVS at tc-mobility-staff@niap-ccevs.org, providing the information listed below for each potential participant:

 

• Name

 

• Affiliation (Vendor/CCTL/Academic Institution/Scheme/Other) 

 

• Telephone number

 

• Email address

 

• A brief statement of the qualifications for participation in the TC

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann205

  NIAP Progress Report - Second Quarter 2018 (26 July 2018)

See the NIAP Second Quarter Progress Report to learn about recent NIAP accomplishments and activities, and upcoming releases.

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann203

  NIAP Progress Report - First Quarter 2018 (04 June 2018)

See the NIAP First Quarter Progress Report to learn about recent NIAP accomplishments and activities, and upcoming releases.

 

 

 

 

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann202

  General Purpose Operating Systems Protection Profile v4.2 Published! (25 May 2018)

The National Information Assurance Partnership/Common Criteria Evaluation and Validation Scheme (NIAP/CCEVS) is pleased to announce the posting of the PP for General Purpose Operating Systems Version 4.2. Updates were made to incorporate all applicable NIAP Technical Decisions.

Please follow the below link for more information:

https://www.niap-ccevs.org/Profile/Info.cfm?PPID=424&id=424

 

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann201

  Call for Participants for Enterprise Security Management Technical Community (10 April 2018)

 

The National Information Assurance Partnership/Common Criteria Evaluation and Validation Scheme (NIAP/CCEVS) is pleased to invite interested parties to be part of a Technical Community (TC) for the development of a suite of Protection Profiles for Enterprise Security Management (ESM).  Members of this TC are expected to provide technical input to the development of Protection Profiles (PPs) containing a baseline set of Security Functional Requirements (SFRs) for Enterprise Management products.

 

The goal is to produce a new suite of ESM Protection Profiles and Modules to (eventually) replace the current ESM PPs. This new suite of ESM PPs will target the following specific classes of ESM products: Endpoint Detection and Response (EDR), Audit Server, Enterprise Management, Privileged Access Management (PAM), and Compliance Scanner.

 

The first to be discussed and developed by the TC will be the Endpoint Detection and Response Protection Profile with a Host Agent Module. EDRs are security products that use a host agent to collect endpoint data and run analytics against that data to find malicious activity. Most products in this class offer response capabilities that allow for isolation of the machine, termination of the process, or other remediation.

 

The Host Agent Module will extend either the Application Software or General Purpose Operating Systems PPs.

 

All interested parties should contact NIAP/CCEVS at tc-esm-staff@niap-ccevs.org, providing the information listed below for each potential participant:

 

• Name

 

• Affiliation (Vendor/CCTL/Academic Institution/Scheme/Other) 

 

• Telephone number

 

• Email address

 

• A brief statement of the qualifications for participation in the TC

 

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann199

  NDcPP v2.0 and FWcPP v2.0 Erratas Published (10 April 2018)

The Network Device and Firewalls (NDFW) international Technical Community (iTC) has published Errata versions of the Network Device Collaborative Protection Profile (ND cPP) v2.0, ND cPP Supporting Document v2.0,  and Stateful Traffic Filter Firewalls Collaborative Protection Profile (FW cPP) v2.0. The Errata versions replace the v2.0 documents with immediate effect. Therefore, NIAP has published the Errata versions and archived the NDcPP v2.0, ND cPP SD v2.0, and FW cPP v2.0. Please note the SD for FW cPP v2.0 was not changed.

direct link to this item: https://www.niap-ccevs.org/Announcements/announcements.cfm#ann200
Site Map              Contact Us              Home