Common Criteria is an internationally recognized standard and an ISO standard (ISO-IEC15408) for evaluating the security claims of IT products and systems. There are two implementations of the (Common Criteria) standard, community Protection Profile (cPP) and Evaluation Assurance Level (EAL). Each requires a rigorous evaluation to a set of security claims. cPP is a black box prescriptive model with standardized sets of requirements, and EAL is a white box model that allows greater scope in defining the set of claims. EAL4 also provides assurance through evaluation of the products design, implementation, company development methodology, internal systems, processes, security systems and architecture and support.
These certifications provide independent validation of the claims made, compliance to standards, and successful completion of interoperability testing, penetration testing and a vulnerability analysis.
The USA NIAP-CCEVS cPP
Check Point R81 Security Gateway and Maestro Hyperscale Appliances R81.00 is certified by NIAP-CCEVS as conformant to 3 community Protection Profiles (cPP):
Target of Evaluation (TOE) includes:
SmartConsole, Smart-1, Quantum enterprise appliances including Maestro, and CloudGuard Network
The certification is listed on the NSA Commercial Solutions for Classified (CSfC) which qualifies U.S. Government agencies for using it to protect classified data.
The certificate also has international recognition through Common Criteria Recognition Arrangement (CCRA).