AppGate and the Common Criteria
The Common Criteria certification assures customers, in and out of the government sector, that AppGate's security systems have gone through a long and rigorous testing process and conform to IT security standards sanctioned by the International Standards Organization.
The Common Criteria is an ISO standard for software security functions (ISO/IEC15408:1999). More information about it is available at www.commoncriteriaportal.org.
Common Criteria evaluations involve formal rigorous analysis and testing to examine security aspects of a product or system. Extensive testing activities involve a comprehensive and formally repeatable process, confirming that the security product functions as claimed by the manufacturer. Security weaknesses and potential vulnerabilities are specifically examined during an evaluation.
AppGate Security Server 8.0.4 is certified EAL2+. The following information about the certification is available:
Common Criteria Certification Report: The certification report was prepared by BSI.
Security Target: This document describes the security target used for the Common Criteria Evaluation and Certification
Common Criteria Evaluated Configuration Guide (CCECG): This document describes the requirements and procedures for installing and configuring the specified product in accordance with the Common Criteria (CC) evaluated deployment. The guide is incorporated in the AppGate Security Server Administration Guide version 8.0.4. Chapter 12 contains the directions on how to keep the AppGate security server in a Common Criteria certified state.