|
There are two important standards that being used today to help insure the reliablity and security of equipment: FIPS 140-2 and Common Criteria.
FIPS 140-2 is a government standard that validates security claims for products using cryptography through the National Institute of Standards and Technology (NIST). By law, U.S. government purchasing agents MUST purchase the product that is certified for FIPS 140-2 (or FIPS 140-1), over one that is not. FIPS 140-2 is also required in Canada and recognized in Europe and Australia. The financial community uses FIPS 140-2 to measure the safety of products handling monetary transactions, and the standard is also being adopted by ISO and ANSI.
Common Criteria is an international standard signed by 24 countries and recognized by many more throughout the world. The US Department of Defense requires that all products purchased by their department by Common Criteria validated. Common Criteria is also an ISO standard 15408, ACSI 33, and is followed by the EU and IEEE.
ESP offers a comprehensive set of services for FIPS 140-2 validation and Common Criteria cerification: assessment, planning, and implementation of the process, including interfacing with the appropriate certification authority. We also offer cryptography libraries that achieved validation in other applications.
|
