Common Criteria
consultation, ISO 15408 support

If you are looking for a Common Criteria expert, who can help
you get prepared and easily get over the difficulties of the certification process,
then you are at the right place.

get a free consult

Professional Common Criteria consultancy saves you cost and effort.

During our consulting services the experts will guide you through the common criteria requirements, so you can:

  • Accelerate preparation

  • Save cost and effort

  • Avoid mistakes

  • Create high quality developer documents

  • Prepare your product for a successful certification project

  • Maximize efficiency of evaluation

  • Spare your organization from unnecessary iterations

Learn everything you need to know for a successful Common Criteria evaluation project. Save costs and efforts with your checklist.

Guide and checklist for Common Criteria Evaluations

download it here
Guide and checklist for Common Criteria Evaluations

Professional Support

If you are new to Common Criteria certification or in need of professional support, contact us and we will be happy to guide you through the possibilities. Our consulting may include:

  • Active cooperation with development team

  • Active support for documentation

  • Template creation

  • Document writing

  • Ongoing consultation with experts in the field

  • Design review

  • Security Target Creation

  • Pre-Vulnerability Assessment

Certified Evaluators

Our consultants are OCSI certified (Italian scheme) and BSI certified (German scheme) Common Criteria evaluators, experienced in Common Criteria guidelines, tips and tricks of evaluations such as:

How to create the proper, high quality documentation?

How to upgrade your development site security?

How to prepare and develop your product in the most secure, efficient and fastest way?

Ready for your next Common Criteria certification project?

We can support you from day one, once you decide on certifying your product.

get a free consult

Webinars

Do you want to know more about Common Criteria evaluation?
Do you want to know how you can get your product certified?

COMMON CRITERIA, THE SECURITY PASSPORT Part 2
On-demand
Dr. Katalin Szűcs
Jonatán Bodó
Imre Fodor
June 9, 2022

COMMON CRITERIA, THE SECURITY PASSPORT Part 2

Inspiration and supporting tools for your CC projects

Find out everything you need to know about Common Criteria evaluation & learn more about our new CC educational material, CCGuide.

LEARN MORE
COMMON CRITERIA, THE SECURITY PASSPORT Part 1
On-demand
Dr. Katalin Szűcs
Jonatán Bodó
Imre Fodor
November 18, 2021

COMMON CRITERIA, THE SECURITY PASSPORT Part 1

1 topic from 4 perspectives

You can get necessary technical information, best-practices and advice from 4 perspectives in order to help you through the complete Common Criteria evaluation process.

LEARN MORE

The most effective way to prepare
Developer Docs for CC evaluation

Is this you?

Are you struggling to prepare the required Developer Documents for your upcoming Common Criteria certification project? 

Do you think you could use the already existing docs for your product's evaluation? 

Do you think it is time-consuming or sometimes even confusing to comply with CC requirements? 

If you are preparing for your first Common Criteria certification project, or you already have experience with CC evaluation, but willing to save some time and money in preparation.

Then this course is made for you.

Enroll now

Standards and Protection Profiles
we have experience with

Selection of Protection Profiles
(examples only)

EN 419 211-2 / BSI-CC-PP-0059-2009-MA-01, Version 2.0.1

Secure signature creation device - Part 2: Device with key generation / Protection profiles for secure signature creation device – Part 2: “Device with Key Generation”

EN 419 211-3 / BSI-CC-PP-0075-2012

Secure signature creation device - Part 3: Device with key import / Protection profiles for secure signature creation device - Part 3: Device with key import

EN 419 211-4 / BSI-CC-PP-0071-2012, Version 1.0.1

Secure signature creation device - Part 4: Extension for device with key generation and trusted communication with certificate generation application / Protection profiles for secure signature creation device – Part 4: “Extension for device with key generation and trusted communication with certificate generation application”

EN 419 211-5 / BSI-CC-PP-0072-2012, Version 1.0.1

Secure signature creation device - Part 5: Cryptographic Module for Trust Services / Protection profiles for secure signature creation device – Part 5: Extension for device with key generation and trusted communication with signature creation application

EN 419 211-6 / BSI-CC-PP-0076-2013

Secure signature creation device - Part 6: Extension for device with key import and trusted communication with signature creation application / Protection profiles for secure signature creation device - Part 6: Extension for device with key import and trusted channel to signature creation application

EN 419 241-2

Trustworthy Systems Supporting Server Signing Part 2: Protection Profile for QSCD for Server Signing

EN 419-221-5

Protection profiles for TSP Cryptographic modules - Part 5 Cryptographic Module for Trust Services

Protection Profile for Certification Authorities

Version 2.1, 2018-12-01 (NIAP)

Protection Profile Module For Stateful Traffic Filter Firewalls

Version 1.3, 2019-09-27

Protection Profile For Mobile Device Fundamentals

Version 3.2, 2021-04-15

Protection Profile For Application Software

Version 1.4, 2021-10-07

CIMC PP

Certificate Issuing and Management Components Protection Profile, Version 1.5

BSI-CC-PP-0055

Machine Readable Travel Document with ICAO Application and Basic Access Control (MRTD-PP)

BSI-CC-PP-0056-V2-2012

Machine Readable Travel Document with ICAO Application, Extended Access Control (PP-MRTD EAC)

BSI-CC-PP-0068-V2-2011-MA-01

Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE PP)

BSI-CC-PP-0084

Security IC Platform Protection Profile with Augmentation Packages

BSI-CC-PP-0087

Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use (MR.ED-PP)

Protection Profile for Application Software,

Version 1.3, 1 March 2019 (NIAP)

Collaborative Protection Profile For Network Devices

Version 2.2e, 2020-03-23

Protection Profile- Module For Private Network (VPN) Gateways,

Version 1.1, 2020-06-18

General Purpose Operating Systems Protection Profile/ Mobile Device Fundamentals Protection Profile Extended Package (EP) Wireless Local Area Network (WLAN) Clients

Version 1.0, 2016-02-08

Functional Package For Transport Layer Security

Version 1.1, 2019-02-12

  • Does CC certification take time and effort?
  • Will Common Criteria evaluation cost you?
  • Will Common Criteria certification be worth it?
YES

Get certified in 4 months with agile methods

We use agile methodologies and toolsets imported from software development in project management and customer development.

Thanks to our improved processes an EAL4+ evaluation can be finished in 4 months!

Our Common Criteria testing laboratory staff is highly experienced, involved in CC evaluations for more than a decade.

see our references

Selection of Products
we have experience with

(examples only)

Identity Card Applets / Electronic identification (EiD)

EAC - PACE - AA - BAC

Java Card Open Platform (JCOP)

Hardware Security Module (HSM), Cryptographic Module (CM)

Electronic identification (EiD)

Signature Activation Module (SAM)

Qualified Signature Creation Device (QSCD) / Secure Signature Creation Device (SSCD)

Network device software, firmware

Firewall appliance

Stateful Traffic Filter Firewalls

Private Network (VPN) Gateways

Logical and physical machine readable travel documents

Mobile Devices

WLAN Clients

Application Software

Transport Layer Security client or server