 |
|
|
|
|
|
|
|
Dokumentation
-
Kontakt
|
| Press release 09/09/2003 |
 |
|
|
DEP/PCI achieves common criteria certification |
9/9/2003 |
|
Banksys host security module recognized for its trustworthiness
|
|
Brussels, 9 September 2003 - Banksys announced today that it has obtained the Common Criteria EAL3+ certification for its leading edge DEP/PCI host security module. This certification is important since it formally recognizes Banksys’ relentless efforts to assure that its products consistently meet high security levels. The DEP/PCI cryptographic card ensures the security of a wide range of critical network applications. The certification was officially granted by the German BSI authority.
|
|
|
Advanced network security
|
One of the primary goals of Banksys is to provide products and services that fully meet emerging market needs and security issues. The DEP/PCI brings cryptographic security to critical network applications, including PKI components, payment systems, e-commerce, m-commerce, e-banking, key management applications, and payTV access control. Banksys also uses DEP security technology for its own internal needs. This is the first host security module to achieve Common Criteria EAL 3+ certification. Although other host security modules generally comply with one regional standard, the Common Criteria harmonizes all major regional security standards. Other Banksys products are expected to follow suit in the near future.
|
|
|
The global standard for recognizing security
|
Because the DEP/PCI plays such a critical role in ensuring network security, its reliability must be rigorously validated. The Common Criteria are a universal set of requirements that relate to the security properties of IT products. They are described in ISO 15048 and serve as the basis for assessing the reliability and security of IT equipment. The Common Criteria certification is an extremely important achievement for Banksys since it ensures worldwide recognition and proven trustworthiness of the DEP/PCI. Every confidentiality and integrity feature of the product has been tested, from design and production through delivery and operation. The Common Criteria also provide transparency, since the performance of the product’s countermeasures against security threats is described precisely in a product report (Security Target) that is publicly available.
|
|
|
Independent evaluation
|
Common Criteria certifications, granted by regional certification bodies, must conform in every respect to strictly enforced international standards. The Banksys DEP/PCI was evaluated by TNO-ITSEF BV, an ISO 17025-accredited IT Security Evaluation Facility, and certified by the German Federal Office for Information Security (BSI - Bundesamt für Sicherheit in der Informationstechnik). This independent certification guarantees users that the security performances defined in the certificate are effectively delivered. The DEP/PCI achieved immediate Evaluation Assurance Level 3+ (EAL3+), which demonstrates a high level of reliance. Furthermore, the DEP/PCI card meets FIPS 140-2 level 4 requirements. The product is described in great detail in the Security Target report. Potential customers can use this description to precisely evaluate whether the product meets their specific needs and to make relevant comparisons with other solutions.
|
|
|
|
Useful links
|
|
The Security Target document and the Certification Report are both available on www.bsi.bund.de/zertifiz/zert/reporte.htm, search for "BSI-DSZ-CC-0198-2003 (08.08.2003)" - Banksys DEP/PCI Version 3.0
|
|
|
|
|
|
Zurück
|
|
|
 |
|
|
