Common Criteria is an internationally recognized standard and an ISO standard (ISO-IEC15408) for evaluating the security claims of IT products and systems. There are two implementations of the (Common Criteria) standard, community Protection Profile (cPP) and Evaluation Assurance Level (EAL). Each requires a rigorous evaluation to a set of security claims. cPP is a black box prescriptive model with standardized sets of requirements, and EAL is a white box model that allows greater scope in defining the set of claims. EAL4 also provides assurance through evaluation of the products design, implementation, company development methodology, internal systems, processes, security systems and architecture and support.
Check Point R80.30 has been awarded 2 Common Criteria certificates proving that is compliant to both EAL at level 4+ and for cPP for 3 Protection Profiles. The certifications provide independent validation of the R80.30 network security management and security management and security gateway products, and demonstrate its robustness having successfully completed independent feature and interoperability testing, penetration testing, and vulnerability analysis.
The Netherlands EAL4+
Check Point R80.30 Firmware for Security Gateway Appliances with Firewall, IPS Blade Pattern Matcher, and Security Management Server. The certification is at EAL4 augmented with ALC_FLR.1 (EAL4+) Target of Evaluation (TOE) includes:
The certificate, up to EAL4, has international recognition through the SOGIS Mutual Recognition Agreement (MRA).
The USA NIAP-CCEVS cPP
Check Point R80.30 Security Gateway Appliances is certified by NIAP-CCEVS as conformant to 3 community Protection Profiles (cPP):
Target of Evaluation (TOE) includes:
The certification is compliant to the extended requirements of the NSA Commercial Solutions for Classified (CSfC). The certificate has international recognition through Common Criteria Recognition Arrangement (CCRA).