openPR Logo
Press release

atsec information security Evaluates Red Hat Linux 4 Update 2 at Common Criteria EAL3

04-07-2006 06:01 PM CET | IT, New Media & Software

Press release from: atsec information security corporation

atsec completes complex evaluation with NIAP in just 6 months!

AUSTIN, Texas – April 7th, 2006
atsec information security is proud to announce completion of its Common Criteria evaluation of Red Hat Linux 4 Update 2 at evaluation assurance level (EAL) 3 in just six months. The accomplishment adds to atsec’s unparalleled reputation for timely completion of Linux evaluations; since December 1, 2004, atsec has initiated and completed five Linux evaluations at EAL3+ and EAL4+ for three different customers. The timely completion of evaluation projects is critical if sponsors are to reap maximum benefit from their investment. atsec’s proven success in timely evaluation of Linux products is attributable to the extensive experience of its Linux product evaluators, its ongoing working partnerships with Linux product sponsors, and its excellent relationships with the Common Criteria certifying and validating bodies.
Red Hat Linux 4 Update 2 was certified by the U.S. National Information Assurance Partnership (NIAP) Common Criteria Evaluation and Validation Scheme (CCEVS) as conformant to EAL3+ and the Controlled Access Protection Profile (CAPP), which specifies a set of security functional and assurance requirements for IT products. The operating system is certified on HP server platforms including Itanium 2 processor based servers, and Intel Pentium/Xeon based servers with EM64T 64-bit extensions and HP AMD Opteron processor. HP sponsored the evaluation effort.
Completing evaluations efficiently and with limited resource investment by NIAP is essential for the success of the evaluation program, as pointed out in a recent report by the Government Accountability Office (GAO) on Common Criteria evaluations. atsec supports these goals and has demonstrated with this project that Common Criteria evaluations under the NIAP scheme can be done efficiently, satisfying some of the challenges the GAO report identified.
In fact, atsec information security is the world leader in Common Criteria evaluation of Linux, which is the world’s most scrutinized operating system under the Common Criteria. In less than three years since atsec pioneered evaluation of open source Linux systems in its successful August 2003 effort to certify SUSE Linux 8, the company has recorded ten successful Linux evaluations on five different distributions on a large range of hardware platforms (Intel Xeon 32-bit and 64-bit platforms; Intel Pentium based platforms; IBM iSeries, pSeries, zSeries, IBM eServer Opteron based systems; HP Opteron based systems; HP Intel Itanium based systems, and SGI Altix massive parallel systems based on Itanium processors) to two different national Schemes, CCEVS NIAP in the U.S. and BSI in Germany. It is noteworthy that for each of the ten completed evaluations, atsec examined a unique combination of Linux distribution, hardware platform, and vendor-specific supporting software.

Operating system evaluation is the greatest test of competence in the field, and atsec continues to earn its reputation as the world leader in this sphere. Helmut Kurth, atsec Chief Scientist, notes: “Of the 42 successful operating system evaluations performed world-wide as listed on the official Common Criteria Portal web site (, 22 were performed by atsec.”
The conclusion of the Red Hat Linux 4 Update 2 evaluation closely follows completion of two milestone operating system evaluations: Red Hat Enterprise Linux 4 at EAL4+ conformant to CAPP, and IBM z/OS V1R7 at EAL4+ conformant to CAPP and the Labeled Security Protection Profile (LSPP). Continuing its pioneering efforts, atsec is conducting the first ever evaluation of a Linux product with the SE-Linux security enhancement against the Labeled Security Protection Profile (LSPP) in its examination of Red Hat Enterprise Linux 5. Linux industry experts have noted that this evaluation is particularly important because it might represent a historic opportunity to integrate security features that are currently specific to the security Linux branch back into the mainstream commercial Linux branch.
atsec is one of only four companies worldwide with multiple evaluation labs accredited to perform evaluations under two different national schemes. atsec labs have been accredited by NIAP CCEVS in the U.S. and BSI in Germany to perform evaluations using the Common Criteria standard. Eligibility to perform evaluations under both major schemes and the availability of a large (40+) staff of qualified evaluators, enable atsec to offer its customers both maximum flexibility, and proven expertise and experience in Common Criteria evaluations. For more information about atsec’s qualifications and competence, see . For independent confirmation of atsec’s competence and reputation, visit the NIAP or BSI websites, or contact NIAP or BSI directly.
Scrutiny of Red Hat Linux 4 Update 2 continues. Evaluation at the more rigorous evaluation assurance level 4 begins immediately.

# # #

About atsec information security
atsec information security is an independent, standards-based IT (information technology) security consulting and evaluation services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec launched its U.S. business in May 2003, building on extensive success in Europe dating back to 2000. atsec leverages its deep security, process, and standards expertise to consult on a wide range of IT security needs, enabling clients to establish integrated security management procedures in order to manage security risk and improve data, product, and business process reliability. atsec works with leading global companies such as IBM, HP, BMW, SGI, Swisscom, RWE, and Vodafone. For more information, please visit .

Media Contact:
Andreas Fabis
atsec information security corporation
(512) 615-7317

This release was published on openPR.

Permanent link to this press release:

Please set a link in the press area of your homepage to this press release on openPR. openPR disclaims liability for any content contained in this release.

You can edit or delete your press release atsec information security Evaluates Red Hat Linux 4 Update 2 at Common Criteria EAL3 here

News-ID: 7475 • Views:

More Releases from atsec information security corporation

The Vatican signs the ISO/IEC 15408 International Recognition Arrangement (I^2RA …
Recognizing the need for secure IT products in all regions of the world, and in support of an internationally agreed Arrangement allowing for the mutual recognition of independently evaluated and validated information technology (IT) products, the Vatican has decided to sign the ISO/IEC 15408 International Recognition Arrangement (I^2RA) and has started to validate the security evaluations of IT products. The I^2RA was established in 1996 and was used as the basis
atsec offers Recognized Assessor services for the Open Trusted Technology Provider™ Standard Accreditation Program
atsec offers Recognized Assessor services for the Open Trusted Technology Provid …
atsec is one of the initial Recognized Assessor companies(i) accredited for the Open Trusted Technology Provider™ Standard Accreditation Program which was announced today during The Open Group(ii) conference in San Francisco, CA. This accreditation program provides the opportunity for technology integrators and their suppliers throughout the global supply chain, to demonstrate conformance to the O-TTPS standard. atsec has participated in the industry-led Open Group Trusted Technology Forum since the forum's formation
Call for papers: International Cryptographic Module Conference 2013
This first ICMC aims to bring together experts from around the world to confer on the topic of cryptographic modules, with emphasis on their secure design, implementation, assurance, and use, referencing both new and established standards such as FIPS 140-2 and ISO/IEC 19790. We are focused on attracting participants from the engineering and research community, test laboratories, government organizations, the procurers, deployers and administrators of cryptographic modules and academia. Our program
atsec makes Third Party Auditor agreement with NASPO
atsec makes Third Party Auditor agreement with NASPO
Austin, TX – atsec information security is pleased to announce its affirmation as a third party auditor for the North American Security Products Organization (NASPO). In this role, atsec has completed the necessary training from NASPO and will conduct audits required to attain certification under the ANSI/NASPO-SA-2008 standard. NASPO was founded in 2002 by companies and individuals in the security products industry who recognized the need for the control of

All 4 Releases

More Releases for Linux

Linux Operating System Market Latest Professional Study Report by Top Key Player …
Linux OS is an open source software which makes the code used to create Linux free and available to the public for viewing, editing, and distributing. The Linux OS is distributed by key players in the Linux operating system market for different devices such as desktops, workstations, and servers. The vendors also provide support for the Linux-based OS that they distribute. The Linux Operating System Market research report presents a comprehensive
Linux Operating System Market 2019: Industry Size, Trends, Share and Top Compani …
The Global Linux Operating System Industry Report 2019 is a professional and in-depth study on the current state of the Linux Operating System Market. Key #Companies Analysis- IBM, Ubuntu Linux, Linux Mint, Elementary OS, openSUSE, Fedora Linux, Arch Linux, Debian, Manjaro Download Sample Pages @ The report provides a basic overview of the industry including definitions, classifications, applications and industry chain structure. The Linux Operating System market analysis is provided for
Linux Operating System Market Emerging Growth Analysis, Future Demand and Busine …
Linux is the best-known and most-used open source operating system. As an operating system, Linux is software that sits underneath all of the other software on a computer, receiving requests from those programs and relaying these requests to the computer's hardware. Linux is a Unix-like, open source and community-developed operating system for computers, servers, mainframes, mobile devices and embedded devices. It is supported on almost every major computer platform including
Linux Operating System Global Market SWOT Analysis and Opportunities To 2023 | K …
WiseGuyReports.Com Publish a New Market Research Report On –“ Linux Operating System Global Market SWOT Analysis and Opportunities To 2023 | Key Players : IBM, Ubuntu Linux, Linux Mint, Elementary OS, openSUSE, Fedora Linux”. Linux Operating System Industry 2019 Description:- Linux is the best-known and most-used open source operating system. As an operating system, Linux is software that sits underneath all of the other software on a computer, receiving requests from those
Linux Operating System Market 2018 : Global Comprehensive Study on Ubuntu Linux, …
Linux Operating System Solutions Industry 2018 Market Research report gives estimation of the factors that are boosting the development of the Linux Operating System Solutions market and it also gives the analytical data of Market Size, Share, Growth, Application, Opportunity analysis, and forecast on the basis of key principles segments such as end-users, application, product, technology, and region are surveyed comprehensively. Linux is the best-known and most-used open source operating system.
Global Linux Operating System Market Insights, Status by Top Key Player- IBM, Ub …
A newly compiled business intelligent report, titled “Global Linux Operating System Market Insights, Status by Top Key Player,  Growth, Region, Type and Future Forecast to 2025” has been publicized to the vast archive of Market Research Hub (MRH) online repository. The study revolves around the analysis of Linux Operating System , covering key industry developments and market opportunity map during the mentioned forecast period. This report further conveys quantitative &