Collaborate Disseminate
I’m new to certification arguments. I have an issue with a requirement that is to make an application in a certified Windows 2008 environment.
What are / where can I find a guide to WS2008 CC-compliant setup: which features … Continue reading Guidelines to make Windows Server 2008 Common Criteria Installation
Does Common Criteria requires physical security controls?
Or this is independent on CC and should be specified in Protection Profiles? If there are no requirements on physical security in PP, then evaluation can be done pure… Continue reading Common Criteria physical security requirments
We’re using WinHTTP to send API calls from our client. Now according to Common Criteria, FCS_TLSC_EXT.1.2 assurance activity Test 2, if certificate contains a valid CN (common name) but invalid SAN(Subject Alternate Name), th… Continue reading WinHTTP and python requests package, fail to validate certificate containing valid CN but invalid SAN
We are working to make a product Common Criteria Compliance for one of our customers. The Client part of the product uses OpenSSL for TLS communication, which implies that we need to fulfill the requirement for FCS_CKM.2 Cryp… Continue reading SP 800-56B compliance in OpenSSL
So we are working on making a product of one of our clients common criteria compliant. We are using tls-cc-tools for running FCS_TLSC tests but we are unable to run FCS_TLSS_EXT.1.1 test 5. Please tell how can we run those t… Continue reading How to run FCS_TLSS tests of for common criteria evaluation?
The mostly international criminal comunities have a lot of money and find always IT-specialists who write for good money latest software.
Like to read your opinions – this is the only and best defendence.
I need help or suggestion for the design and implementation of “crypto tier 1 lab”.
Is it something that is standardized across the industry? Should I take it to be something similar to the CMVP and CST Labs?
Continue reading Requirements for design of Crypto tier 1 lab?