Entrust Resources

Validation FAQs

Entrust and Common Criteria (ISO 15408) Certification

  1. What is Common Criteria (“CC”)?
  2. What does CC security evaluation involve?
  3. Is Common Criteria widely recognized?
  4. What aspects of Entrust products were evaluated?
  5. How does CC evaluation fit with FIPS 140 validation?
  6. Why is CC evaluation important?
  7. Which laboratory performed the evaluation of the Entrust products?
  8. Will other Entrust products be evaluated?
  9. Where are relevant CC resources found on the web?
  1. What is Common Criteria (“CC”)? (top)

    The Common Criteria, which originally became ISO standard 15408 in 1999, is an alignment and development of a number of source IT security evaluation criteria including existing European (ITSEC), U.S. (TCSEC Orange Book) and Canadian (CTCPEC). The current third edition was published in 2007. The CC allows comparisons to be made between the results of independent security evaluations. By establishing such a common criteria base, the intent is for the results of an IT security evaluation to be meaningful to a wider audience. It does so by providing a common set of security requirements (functional and assurance) that are used for all CC IT security evaluations regardless of the country in which the CC evaluation was performed.

    The CC divides the IT security requirements into functionality components (i.e., requirements that specify what the product should do) and assurance components (i.e., requirements that provide the trust the user can place in the product or system).

    The IT functional components are grouped into 11 classes including Security Audit, Cryptographic Support, Identification and Authentication, Security Management, Trusted Path/Channels and others. The classes are further refined into families with common objectives.

    The taxonomy for assurance requirements is similar to that for functional requirements. The assurance requirements are grouped into eight classes including Development, Lifecycle Support, Tests, Vulnerability Assessment and others. These are also further refined into families with common objectives. The CC contains a set of defined assurance levels (e.g., Evaluation Assurance Levels or EALs) constructed using components from the assurance families. EALs can be augmented by one or more additional components to provide higher assurance as required.

  2. What does CC security evaluation involve? (top)

    The principal inputs to a CC evaluation are the Security Target, the set of evidence documentation about the product under evaluation, and the product itself (referred to as the Target of Evaluation or TOE).

    The Security Target is the basis for the agreement between the product vendor, evaluators and certification agencies as to what security functionality the product (TOE) offers and the scope of the evaluation. The Security Target identifies, and refines as appropriate, a set of CC IT security and assurance requirements. It provides a definition of the TOE security functions claimed to meet the functional requirements and the assurance measures taken to meet the assurance requirements. The ST also addresses the organizational security policies with which the TOE must comply and the security aspects for the environment in which the TOE will be used.

    The set of evidence documentation includes the documents, which describe the TOE in the form of design description, configuration management, delivery and operations, support and maintenance, vulnerability analysis, functional testing and more. These documents, the TOE, the administration and user guides and the Security Target are submitted to a third party certified laboratory, which proceeds with the evaluation. Using the procedures and interpretations detailed in the Common Evaluation Methodology (CEM), the certified laboratory facility will evaluate the Security Target for completeness and consistency. The evaluators will then analyze the evidence documentation, and proceed with functional and penetration testing of the TOE, to verify conformance to the CC. The results of the evaluation confirm that the ST is satisfied with the TOE, in other words the functional and assurance security claimed in the ST has been verified. The certified laboratory facility produces a report documenting the findings. The report is submitted to a government agency acting as the Certification Body, which then proceeds with certification/validation of the product (i.e., TOE certification/validation).

    The evaluation process establishes a level of confidence that the security functions of a product and the assurance measures applied to it meet the requirements. The evaluation results help consumers gain confidence that the IT product is secure enough for their intended application and that the security risks implicit in its use are tolerable.

  3. Is Common Criteria widely recognized? (top)

    The Common Criteria Recognition Agreement (CCRA) allows IT products that earn a CC certificate to be procured and used in different jurisdictions without the need for them to be evaluated and certified/validated more than once. The CCRA has 25 signatory countries. Some signatories perform evaluations and certificates, while others do not. However, evaluations and certificates produced by any of the issuer countries is accepted by all 25 signatories. By recognizing the results of each other's evaluations, products evaluated in one CCRA member nation can be accepted in the other member nations.

  4. What aspects of Entrust products were evaluated? (top)

    Entrust Authority Security Manager 7.0 was successfully evaluated at the EAL 4 augmented assurance level. Evaluation was done against NIAP CIMC Protection Profile Security Level 3. The evaluation status can be found by visiting the Communications Security Establishment Canada Web site.

    Entrust Authority Security Manager and Entrust Authority Security Manager Administration (formerly called Entrust/Authority and Entrust/RA) 5.0 and 5.1 were successfully evaluated at the EAL 3 augmented assurance level. In addition, the evaluation of Entrust Authority Security Manager and Entrust Authority Security Manager Administration 5.0 satisfies the security assurance requirements listed in the U.S. NIST CS2 Protection Profile. The evaluation status of these versions can be found by visiting the Communications-Electronics Security Group (CESG) Web site.

  5. How does CC evaluation fit with FIPS 140 validation? (top)

    So far, Entrust software cryptographic modules have achieved 21 successful validatioms against the FIPS 140-1 or FIPS 140-2 standards. These validations provide Entrust users with third-party confirmation that the cryptographic services delivered by Entrust products (e.g., encryption/decryption, digital signature creation/verification, hashing, key generation/zeroization, etc.) are secure. The Common Criteria Evaluation is a natural extension to the FIPS 140 process. The successful CC evaluation of these products provides third-party confirmation that these products have met the specified Common Criteria EAL 3 and/or EAL 4 augmented requirements. The CC assurance requirements themselves impose specific FIPS 140-2 level requirements for cryptographic modules within the evaluated product.

  6. Why is CC evaluation important? (top)

    The notion of trust is fundamental in security management, including public key infrastructures (PKI). For a security management infrastructure to be valuable, users must have confidence that the parties they communicate with have been vetted (i.e., their identities and keys are valid and trustworthy). To provide this confidence, it is essential that the technology involved in binding the names of users to their public keys is trusted.

    The technology used to create these bindings includes security mechanisms and services that provide for secured generation, destruction and distribution of cryptographic keys, cryptographic operations, complete access control, management of security functions and services, roles and separation of duties, audit of security critical events, secured communications, data protection and more. These mechanisms and services contribute jointly in allowing the CA to bind together the user identities and public keys in a secured digital format known as a public key certificate.

    In creating these certificates, CAs act as trusted third parties in a security management infrastructure. As long as users trust the CA and its business policies for issuing and managing certificates, they can trust the public-key certificates issued by the CA.

    Security evaluations performed by certified third-party evaluation facilities against recognized security criteria are instrumental in establishing trust in security technology. They allow unbiased security experts to analyze the security functions, interface specifications, guidance documentation and design of the product. The certification of Entrust Authority Security Manager and Entrust Authority Security Manager Administration confirms that these products have met a complete set of functional and security requirements.

  7. Which laboratory performed the evaluation of the Entrust products? (top)

    The evaluation for Entrust Authoirty Security Manager 7.0 was performed by Domus ITSL under the Canadian Common Criteria Evaluation and Certification Scheme. The evaluation for Entrust Authoirty Security Manager and Entrust Authoirty Security Manager Administration 5.0 and 5.1 was performed by Syntegra under the UK ITSEC scheme.

  8. Will other Entrust products be evaluated? (top)

    Entrust Authority Security Manager 8.1 and Entrust Authority Security Manager Administration 8.1 are currently in evaluation at the EAL 4+ level. It is expected that additional Entrust products will also be evaluated in the future.

  9. Where are relevant CC resources found on the Web? (top)

Entrust Authentication and Information Security Solutions

Entrust is an industry recognized leader of information security solutions that help organizations protect critical information through innovative products and services. Our solutions enable risk based authentication, multifactor authentication, file encryption, and digital signatures along with numerous other security capabilities. Entrust provides trusted security and encryption software for less.