IT Evaluation & Assessment

Common Criteria Evaluation

Consult our experts. We are happy to support you.

Contact Us

The Common Criteria (CC), also known as ISO 15408, is an internationally recognized standard used to specify and assess the security of IT products. It is used by governments and other organizations to confirm the security functionality of information technology products. The CC standard defines a set of criteria by which a product’s security aspects – for example, the development environment, security functionality, and handling of security vulnerabilities – can be meaningfully evaluated.

What atsec offers:

atsec operates under Common Criteria evaluation schemes in Germany, the USA, Sweden, Italy, and in Singapore. The certificates from these countries are recognized in more than 30 countries, and details for atsec’s accreditation and approvals can be found on our certificates page.

Certification authorities:

NIAP (USA)

BSI (Germany)

CSEC (Sweden)

OCSI (Italy)

CSA (Singapore)

More information:

Common Criteria Portal

Why our services are important to you:

atsec is one of the most experienced evaluation labs in the world, with more than 20 years of experience in the field of security evaluations. Members of atsec have been heavily involved in the development of the German and European information security criteria that were the basis for the Common Criteria, and atsec is involved in the further development of the Common Criteria to this day.


With hundreds of CC evaluations of various information security products completed – including large, complex software systems like operating systems, databases, firewalls, mobile devices, and printing systems of renowned manufacturers – atsec provides both trusted and thorough testing services.

Downloads:

Further information for your journey to certification.

Common Criteria Request for Information

CC 2022 Transition Document

Common Criteria evaluations performed by atsec:

Date Product name EAL/PP Scheme Information
2024 PR/SM for IBM z16 and IBM LinuxONE 4 Systems Driver
BSI-DSZ-CC-1222-2024		 EAL 5+ BSI
2024 HP G2.0 BC 2600PP
CSEC2022013		 EAL 3+ CSEC
2024
HP G2.0 Samsung 2600PP
CSEC2023012		 EAL 3+ CSEC
2024 F5 BIG-IP 16.1.3.1 including SSLO
CSEC2023009		 PP CSEC
2024 Apple macOS 13 Ventura
CCEVS-VR-VID11347-2024		 PP NIAP
2023 HP CB 2600PP
CSEC2022001		 EAL 3+ CSEC
2023 HP FW 2600PP
CSEC2022002		 EAL 3+ CSEC
see all

Still have questions?

Can’t find what you’re looking for? Let’s talk!

Contact Us →

Security Content Automation Protocol (SCAP)

The Security Content Automation Protocol (SCAP) combines a number of open standards to provide a resource that enables the automation and standardization of technical security operations.

Learn More

Open Trusted Technology Provider Standard Services

The Open Trusted Technology Provider Standard (O-TTPS) is a collaborative initiative that seeks to prevent tainting and counterfeiting in the global supply chain for COTS information and communication technology.

Learn More

Medical Devices IEEE 2621

The IEEE Medical Device Cybersecurity Certification Program has been developed by the IEEE 2621 Conformity Assessment Committee (CAC) to provide certification for wireless diabetes devices.
 
 

Learn More

The Information Security Provider

Read Our Latest Blog Articles

Learn the latest and greatest about information security. You’ll find insights and analyses of recent developments in technology and policy on our blog.