In the security hardware world, NDPP CC certification is a big deal, especially for government and enterprise customers who require independent assurance that devices can meet critical standards for network protection. These are more than just letters or one more test that vendors can wave around in the race to claim their products are “the best” or “the most secure”.
Let’s take a step back, though, and look at what CC certification really is and what it means to buyers and IT decision makers. “Common Criteria for Information Technology Security Evaluation” or CC is actually an international standard for computer security certification. There are currently 33 “Protection Profiles” defined for the Common Criteria ranging from email clients to network security devices. The latter, known as the Network Device Protection Profile (NDPP), sets out a fundamental set of Security Functional Requirements and Security Assurance Requirements (SFRs and SARs, respectively – like I said, alphabet soup, but important terms when we’re talking about this level of testing).
NDPP CC Certification – More Than Just Alphabet Soup | Fortinet Blog
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.