Firmus Security
 

Common Criteria

SERVICES
Our
SERVICES

Common Criteria

Firmus offers consulting services to companies that are undertaking initiatives for Common Criteria (CC) evaluation.

The CC is a multi-part standard for the evaluation of the security properties of IT products. The accepted international standard for IT product security evaluations, the CC is recognized under the CC Recognition Agreement (CCRA) by the CCRA Members. Product certification is immediately recognized by industry experts as proof that a product has been subject to a rigorous, comprehensive examination by independent third party security experts, and certified by national authorities.

Firmus offers the following services:
Common Criteria Evaluation Cost analysis and Cost Benefit Analysis
Common Criteria v3.1 Evaluation Document Preparation and/or Preparation Assistance
Security Target
Development Documentation
- Functional Specification
- Security Architecture Description
- Security Architecture Design
Guidance Documentation
- Operational User Guidance
- Preparative Procedures
Life Cycle Support Documentation
- Configuration Management Documentation
- Delivery Procedures
- Identification of security measures
- Developer defined life-cycle model
Test Documentation
- Developer Test Coverage Analysis
- Developer Test Depth Analysis
- Developer Test Plans and Procedures
- Developer Test Results
Vulnerability Analysis
Flaw Remediation Guidance
Conversion of Common Criteria v2.x Documentation to v3.1
Common Criteria Evaluation Project Management
Readiness Assessment
Scheme and Laboratory Selection Assistance
Liaison to Common Criteria Testing Laboratory (CCTL)
Common Criteria v3.1 Seminars and Classes
Firmus Security