WipeDrive and Common Criteria Certification

Origin of Common Criteria

The goal for developing Common Criteria (CC) was to provide a global recognition and acceptance so that the product sold in the international market would not require re-evaluation by each purchasing country.  The Common Criteria Recognition Agreement (CCRA) was signed in 2000, which standardizes the reciprocally acknowledged CC certification across different countries including the U.S. , U.K., Canada, France, Germany and Netherlands. The joint venture mutually approves and recognize IT Security Products.

Common Criteria Certification

The CC certification program provides assurance that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous and standard and repeatable manner at a level that is commensurate with the target environment for use.  Vendors implement or make claims about the security attributes of their products, and testing laboratories can evaluate the products to determine if they meet the claims.

Common Criteria has 3 parts:

“Introduction and General Model” – containing definitions of terminologies used in the evaluation process

“Security Functional Components” – elaborates the security requirements

“Security Assurance Component” – used to rate the effectiveness of security controls

CC Empowers a target assessment to approve that a specific product fulfills a characterized set of security requirements.

Key concepts of CC are:

  • Target Evaluation (TOE). The Product to be evaluated.
  • Protection Profile (PP). Characterizes a standard arrangement of security prerequisites/requirements for a particular product.  PPs are expressed using a templates about a product line or a broad range of related products.
  • Security Target (ST). An explicit set of security requirements that incorporates comprehensive product-specific information and can be stated as a refinement of the PP. The St forms the basis for agreement between the TOE developers, consumers, and evaluators to the security a TOE offers.
  • Evaluation Assurance Level (EAL).  Provides an overall characterization of the products evaluation and is the final grade assigned to it.  EALS range from 1-7, with one being the minimal level and seven being the maximum level of assessment.  A product with a higher EAL is not an assurance of an elevated level of security; instead, it signifies it has undergone more testing.

Evaluation Assurance Level 2+ (EAL 2+)

WipeDrive Enterprise obtained EAL 2+ certification on a data erasure security target and received evaluation by a Common Criteria certified lab OCSI  http://www.ocsi.isticom.it.  The evaluation process constitutes assessing the evaluation documentation, in-depth testing of the software and results of the examination.  The evaluation serves to validate claims made about the target.

To be of practical use, the evaluation must verify the target’s security features.  This is done through the following:

The ST document that identifies the security properties of the target of evaluation.  The ST may claim conformance with one or more PPs.  The TOE is evaluated against the Security Functional Requirements (SFRs) stablished in its ST, no more and not less.  This allows vendors to tailor the evaluation to accurately match the intended capabilities of their product.  This means that a network firewall does not have to meet the same functional requirements as a database management system, and that different firewalls may in fact be evaluated against completely different lists of requirements.  The ST is usually published so that potential customers may determine the specific security features that have been certified by the evaluation.

The WipeDrive EAL2+ rating can be checked from the CC website which lists all the certified data erasure products http://www.commoncriteriaportal.org/products

References and further reading

  • 193
  • 06-Nov-2019
  • 640 Views