ArcSight selects SAIC's
Common Criteria testing lab for NIAP Common Criteria Validation
ArcSight has entered the Common Criteria Certification process
with the selection of SAIC as its Common Criteria Testing Lab. SAIC's
Common Criteria Testing Laboratory (CCTL) was among the first commercial
labs to be accredited by the National Voluntary Laboratory Accreditation
Program to operate within the National Information Assurance Partnership's
Common Criteria Evaluation and Validation Scheme (CCEVS).
The SAIC CCTL employs a former NSA Chief Evaluator, members of
the Technical Review Board and Interpretations Working Group, and
a U.S. representative directly responsible for the development of
the CC. In addition, SAIC's CCTL has the most applied evaluation
experience of any CCTL operating within the CCEVS and is qualified
to perform Evaluation Assurance Level (EAL) evaluations for a variety
of products, including operating systems and network appliances.
What is the Common Criteria?
SAIC laboratory personnel were key players on the team that developed
the Common Criteria, the first international standard for IT security
evaluation and validation/certification, for the National Information
Assurance Partnership (NIAP). NIAP is a joint program sponsored by
the National Security Agency (NSA) and the National Institute of Standards
and Technology (NIST). Fifteen countries now recognize the Common
Criteria (also known as ISO international standard 15408) as the official
third-party evaluation criteria for IT security procedures.
"We are pleased to be working with such a strong partner to
achieve our Common Criteria certification,¡± said Hugh Njemanze CTO
and Senior Vice President of Research and Development for ArcSight.
¡°Based on the hardening that we have already done in our own labs
and in conjunction with the many government and commercial customers
with whom we work, we anticipate that this will be a very efficient
process."
ArcSight Common Criteria Validation
