Evaluation of Common Criteria, FIPS 140, INTERAC (SPED), PCI, security and cryptographic products


		Common Criteria gives a frame work to assess a very broad range of products. Total time necessary to certify a product depends on a number of factors; compliance with the common criteria standard, complexity, desired assurance level and vendor timetable. Typical certification efforts take between 6 and 12 months. If common criteria certification is taken into consideration at the beginning of the product design it is often much easier for that product to demonstrate its compliance to the standard. Common Criteria measures how well a product can prove its security and not how secure it is. Validation Process Once the terms of the contract for evaluation services have been agreed to and signed by both the vendor and DOMUS ITSL, and the vendor must produce the applicable supporting documentation, the validation process typically follows the steps listed below: Vendor submits documentation and product for certification/testing DOMUS ITSL reviews and tests the product using the Common Criteria Evaluation Methods (CEM). DOMUS ITSL prepares and submits a draft certification report to CSE for review. CSE provides DOMUS ITSL with questions/comments on the certification report. Once these questions have been resolved with CSE, a Common Criteria certificate is issued by CSE. The new certificate and descriptive information are posted to the Canadian Common Criteria Certified Product List as well as the International Centralized Common Criteria Certified Product List. Will My Product Pass? A product can be certified as long as it contains some security features. The pre-certification assistance offered by DOMUS ITSL is invaluable as many of the potential "problem areas" can be addressed and resolved prior to the certification process. It should be noted however that CSE, as the final authorities for Common Criteria certification, reserve the right to question certain technical implementations of a certification and request more information or clarification. In this case, DOMUS ITSL works with the client and acts as a liaison with CSE to resolve the issue(s) and expedite the certification process. Our primary focus is on obtaining certification for your product. During the entire certification process all work performed by DOMUS ITSL is treated as highly confidential and all proprietary data is protected. We do not release any documentation or results without your permission. For more information on DOMUS ITSL Common Criteria services please contact the us via email (or phone at 1-613-247-5698)

Common Criteria gives a frame work to assess a very broad range of products. Total time necessary to certify a product depends on a number of factors; compliance with the common criteria standard, complexity, desired assurance level and vendor timetable. Typical certification efforts take between 6 and 12 months.

If common criteria certification is taken into consideration at the beginning of the product design it is often much easier for that product to demonstrate its compliance to the standard. Common Criteria measures how well a product can prove its security and not how secure it is.

Validation Process

Once the terms of the contract for evaluation services have been agreed to and signed by both the vendor and DOMUS ITSL, and the vendor must produce the applicable supporting documentation, the validation process typically follows the steps listed below:

Vendor submits documentation and product for certification/testing
DOMUS ITSL reviews and tests the product using the Common Criteria Evaluation Methods (CEM).
DOMUS ITSL prepares and submits a draft certification report to CSE for review.
CSE provides DOMUS ITSL with questions/comments on the certification report.
Once these questions have been resolved with CSE, a Common Criteria certificate is issued by CSE.
The new certificate and descriptive information are posted to the Canadian Common Criteria Certified Product List as well as the International Centralized Common Criteria Certified Product List.

Will My Product Pass?

A product can be certified as long as it contains some security features. The pre-certification assistance offered by DOMUS ITSL is invaluable as many of the potential "problem areas" can be addressed and resolved prior to the certification process. It should be noted however that CSE, as the final authorities for Common Criteria certification, reserve the right to question certain technical implementations of a certification and request more information or clarification. In this case, DOMUS ITSL works with the client and acts as a liaison with CSE to resolve the issue(s) and expedite the certification process. Our primary focus is on obtaining certification for your product. During the entire certification process all work performed by DOMUS ITSL is treated as highly confidential and all proprietary data is protected. We do not release any documentation or results without your permission.

For more information on DOMUS ITSL Common Criteria services please contact the us via email (or phone at 1-613-247-5698)