NIST National Voluntary Laboratory Accreditation Program (NVLAP) NIAP-approved Common Criteria Testing Laboratory (CCTL)-Focused Audit and Assessments; we are ready when you are!
The Lazarus Alliance Laboratory is accredited by the National Institute of Standards and Technology (NIST) National Voluntary Laboratory Accreditation Program (NVLAP Laboratory Code 600352).
Lazarus Alliance Proactive Cyber Security® services is an accredited Common Criteria laboratory that specializes in accelerating Protection Profile conformance for the NIAP Product Compliant List (PCL). We utilize industry-leading critical path testing methodology along with the Continuum GRC assessment platform that exemplifies our extensive expertise to achieve expedited certification results without sacrificing quality.
Common Criteria (ISO 15408) certification is a DoD/NSS/Public sector domestic acquisition requirement and international acquisition requirement in 30 other nations. The Lazarus Alliance Laboratory's technical prowess has been recognized by its customer base and the government validators, and as such Lazarus Alliance Laboratory has been accredited to conduct the most challenging of certification efforts.
The Common Criteria is the only global mutually recognized product security standard. The Common Criteria evaluation process has changed significantly with the evolution of Common Criteria to Protection Profile-based evaluation and strict compliance requirements. What used to be a flexible and adaptable process where requirements could be added and or dropped based on production functionality has now become rigid leaving no room for errors. This is where Lazarus Alliance Laboratory's experience and the critical path-driven approach helps. We engage early and adopt risk-mitigating processes where non-compliance is identified early on, fixes are discussed and planned, testing methodology is defined in advance to allow your test teams to plan accordingly and the schedule is expertly managed to ensure our progress is in step with your development and test plans.
Service Offerings:
- Gap Analysis and Strategy Workshop
- Design Consulting
- Documentation Development
- Evaluation Services
- Post-Certification Support
- Continous Monitoring Support
For Common Criteria services under the National Information Assurance Partnership (NIAP) scheme, services that reduce cost and leverage the number one ranked Common Criteria audit software platform, call +1 (888) 896-7580 to get started.
Frequently Asked Questions
What is the Common Criteria Evaluation and Validation Scheme (CCEVS)?
CCEVS, managed by the National Information Assurance Partnership (NIAP) and NIST, is a U.S. framework for evaluating IT products against Common Criteria standards, ensuring compliance with Protection Profiles (PPs).
Who must comply with Common Criteria?
Vendors of IT products (e.g., firewalls, mobile devices) seeking government contracts, particularly with the DoD or NSS, must achieve Common Criteria compliance for inclusion on the NIAP Product Compliant List (PCL).
What is a Common Criteria Testing Laboratory (CCTL)?
A CCTL is an NVLAP-accredited laboratory (e.g., Lazarus Alliance) that conducts Common Criteria evaluations to verify IT product security against specified Protection Profiles or Security Targets.
What are Evaluation Assurance Levels (EALs)?
EALs (1-7) measure the rigor of a Common Criteria evaluation, with EAL1 being the least stringent and EAL7 the most rigorous, involving deeper testing and documentation.
Are EALs still used in the U.S. for Common Criteria?
EALs (EAL1-EAL7) are no longer used for NIAP evaluations in the U.S., replaced by Protection Profile-based assessments, but EALs may still be required by other CCRA countries.
What is the Common Criteria Recognition Arrangement (CCRA)?
The CCRA is an international agreement among 31 countries recognizing Common Criteria evaluations (up to EAL2) to ensure mutual acceptance of certified IT products.
Just the facts ...
Common Criteria (CC) is an internationally recognized standard for security assessments of information assurance (IA) or IA-enabled products. Common Criteria is a product acquisition requirement for government agencies, both in the U.S. and abroad, and is a prerequisite for the Department of Defense Information Network Approved Products List (DODIN APL) and Commercial Solutions for Classified (CSFC).
- Protection Profile-based certifications
- EAL / Security Target-based certifications
The Lazarus Alliance Laboratory provides a full lifecycle of Common Criteria services under the National Information Assurance Partnership (NIAP) scheme, from consulting and documentation development through evaluation and certificate maintenance. We apply a risk-based, top-down approach that drives both efficiency and effectiveness into the programs.
Find out more by calling +1 (888) 896-7580 today.