Certification according to Common Criteria certification levels
The Common Criteria certification standard has mostly overcome the older certification standards such as ITSEC or FIPS. Lately, most of the world security tokens are therefore taken to Common Criteria certifications only, whereas FIPS is a requirement, which is currently used mainly by the US government. For all other token applications, the Common Criteria standard allows provision of transparency, product comparisons and reliability in security terms.
CC evaluation reports are mainly published on the websites of the German and French regulation authorities, BSI and DCSSI.
charismathics solutions are built with standard components, certified with a security level according to their purpose. All components conform to the standards and certification processes defined by the Common Criteria. Please contact us for more information for a current list of Common Criteria compliant components.
Under the UK ITsec Scheme (United Kingdom Information Technology Security Evaluation and Certification Scheme), the security features of IT systems and products are tested independently of suppliers to identify logical vulnerabilities. This type of testing is known as security evaluation and it is carried out against standardized criteria to a formalized methodology. The criteria lay down a number of degrees of rigor known as Assurance Levels. Certificates are issued by the Scheme for products meeting the requirements for a claimed level of assurance. United Kingdom certificates are recognised in many countries of the world.
charismathics solutions are built with standard and certified components. charismathics conforms to ITSEC certification when built with ITSEC certified components. For more information regarding the certification see: www.cesg.gov.uk/
FIPS Certification
charismathics solutions are built with standard and certified components including those carrying the FIPS certification of the US National Institute of Standards and Technology. The plug’n’crypt™ smart tokens are manufactured upon request with special FIPS certified components. Pleasecontact us for more information for a current list of compliancies. For more information regarding the certification see: http://csrc.nist.gov/publications/fips/index.html
PIV Certification
FIPS 201 incorporates three specifications related to Personal Identity Verification (PIV) of Federal employees and contractors. charismathics smart security interface is going through PIV validation process. Check out soon for final validation details.
For more information regarding the certification see: http://csrc.nist.gov/groups/SNS/piv/index.html
local government specifications and other requirements
charismathics solutions support the local signature laws in its hardware, software and components. Conformity to local signature laws per country or region can be attained upon request.
Italy
charismathics products are compliant and certified to be used with the Italian government standard CNS (Carte Nazionale dei Servizi), defined by CNIPA. They also are an integral part of the solutions in other projects across Italy including CartaSi, and the National Health Card. www.protocollo.gov.it
Print