Trident v2.1 has earned Common Criteria EAL4+ security certification in exceptionally short time
2
min reading time
This common criteria re-evaluation project of i4p-Informatika Ltd. was successfully completed thanks to professional cooperation between the client's developer team and CCLab's qualified evaluators.
The most recent versions of i4p's TRIDENT HSM and TRIDENT SAM (Signature Activation Module) have received their updated Common Criteria EAL 4+ certification. These devices have been improved in response to customer feedback and they now offer even more flexibility and ease-of-integration, as well as improved high-availability clustering options.
i4p is the first and only vendor to have attained certification against both the Protection Profile for Cryptographic Module for Trust Services (EN 419221-5) and for Server Signing (EN 419241-2). On top of that, our clients' solution is eIDAS-listed as a QSCD (Qualified Signature and Seal Creation Device). Therefore, this is the only one-vendor solution that already complies with the coming update in eIDAS regulation that will mandate not only the use of a QSCD for advanced and qualified remote signature & seals, but also a CC-certified SAM. It is also one of only 3 CC-certified SAM solutions in total, but again, TRIDENT RSS (HSM + SAM) is the only complete solution that was developed by one and the same development team.
Complex process, professional support
“In the case of safety certificates, the certification is valid only for the specific product version that has been tested by a laboratory under the control of the supervisory authority during the certification process. Each time a new version is released, the developer of the product is obliged to complete a similar certification process. This is a complex yet extremely important procedure, since this ensures our customers that the solution meets the stringent requirements. We are proud that we could obtain the certificate for Trident HSM v2.1 in a very short time, and we are especially pleased that we completed this process with a Hungarian partner, namely the independent information security laboratory CCLab”, said Zsolt Rózsahegyi, CEO of i4p.
“This re-evaluation project, which was successfully completed within only 4 months, wasn’t the first joint project with i4p-Informatika Ltd. Thanks to the well-prepared documents of the developers and the quick consideration of our observations during the evaluation process, we were able to complete the EAL4+ level compliance assessment by the expected deadline, within a good timeframe”, said Gábor Hornyák, CCLab Ltd’s Head of Laboratory.
The Common Criteria EAL4+ security certificate of i4p can be found here.
Related downloadables
Related downloadables
Guide and Checklist for Common Criteria Evaluations - updated with EUCC Scheme
Guide and Checklist for Common Criteria Evaluations - updated with EUCC Scheme
Learn everything you need to know for a successful Common Criteria certification project. Save costs and effort with your checklist.
Common Criteria Evaluation Process infographics
Common Criteria Evaluation Process infographics
This downloadable infographics introduces the Common Criteria Evaluation process to you. Explore now for free.
Guide for Radio Equipment Directive (RED)
Guide for Radio Equipment Directive (RED)
Read and learn more about the Radio Equipment Directive (RED), download our free material now.
Related news
From Standards to Trust: How Common Criteria Shapes Cybersecurity Assurance
In an increasingly interconnected world, cybersecurity has become more than just a technical requirement, it's a critical shield protecting organizations from potential digital threats. Common Criteria (CC), an internationally recognized standard also known as ISO/IEC 15408, emerges as a comprehensive framework that meticulously evaluates the security properties of IT products and systems. This international standard provides a structured approach to assessing technological security, offering governments, enterprises, and technology developers a robust methodology for understanding and validating the security mechanisms embedded within their digital solutions. Moreover, Common Criteria serves as a critical benchmark, ensuring that technological products meet rigorous security standards before entering the marketplace.
10
min reading time
Is EUCC Enough? Addressing Gaps in European Cybersecurity Certification
As Europe advances its digital transformation agenda, securing its technological infrastructure has become a top priority. At the center of this ambition lies the European cybersecurity certification ecosystem. Most notably, the European Cybersecurity Certification Scheme (EUCC). Designed to harmonize security assurance practices across EU member states, EUCC is the first concrete step under the EU Cybersecurity Act to create a unified framework for certifying ICT products and services. But while EUCC represents a major achievement in digital sovereignty, a crucial question remains: Is it enough? This article explores what the European Cybersecurity Certification does well, where its current limitations lie, and what additional steps are necessary to create a truly resilient cybersecurity landscape across Europe.
7
min reading time
Strategic Partnership for Cybersecurity – CCLab and WonSec Technology Join Forces for EUCC Certification
On March 21, 2025, a special event took place at CCLab’s headquarters in Budapest, Hungary: we had the pleasure of welcoming the delegation of WonSec Technology, and together we signed a strategic cooperation agreement focused on the EU Cybersecurity Certification Scheme on Common Criteria (EUCC). This partnership marks a milestone not only for CCLab but for the broader European certification ecosystem as well. Our joint goal is to support the secure and compliant entry of ICT products and services into the European market, especially in light of the soon-to-be mandatory EUCC requirements.
3
min reading time