atsec Evaluates Oracle Enterprise Linux at Common Criteria EAL 4+

atsec information security announced today that Oracle Enterprise Linux Version 5 Update 1 has been certified by the German Common Criteria scheme as conformant to EAL4+ and the Controlled Access Protection Profile (CAPP), Role Based Access Control (RBAC), and Labeled Security Protection Profile (LSPP). The evaluation also covers Oracle Enterprise Linux 5 Update 1 executed in a guest domain on Oracle VM server virtualization software, demonstrating an EAL4+ certified environment.

This evaluation adds to atsec’s impressive record of timely completions of Linux operating system evaluations. Since August 2003, atsec has initiated and completed more than 15 Linux evaluations at EAL3+ and EAL4+ on a broad range of hardware platforms. Completion of CC projects, in conjunction with a company’s development schedules, are important in order to reach their markets effectively and take the maximum benefit from their evaluation investment.

The Common Criteria standard is flexible and adapts to a variety of software paradigms – as atsec has shown by applying the methodology to open source software. atsec performed the first ever CC evaluation of a Linux operating system in 2003.

Only a handful of companies worldwide are accredited to perform evaluations under more than one national scheme. atsec’s Common Criteria labs have been accredited by NIAP CCEVS in the U.S., BSI in Germany and CSEC in Sweden to perform evaluations.