122:
and Deputy
Director serve a two-year term of service. This term of service may be extended at the discretion of NSA management. There are also a significant number of technical and administrative support personnel required to provide a full range of validation services for the sponsors of evaluations and the Common Criteria Testing Laboratories (CCTL). These personnel include validators, technical experts in various technology cells, and senior members of the technical staff and the IT security community on the oversight board.
126:
developer or CCTL), concerning the operation of the CCEVS or any of its associated activities shall be referred to the
Validation Body for resolution. In disputes involving the Validation Body, NSA management will attempt to resolve the dispute through procedures agreed upon by the two organizations.
121:
The
Validation Body is led by a Director and Deputy Director selected by NSA management. The Director of the Validation Body reports to the NIAP Director for administrative and budgetary matters and to NSA certificate-issuing authorities for CCEVS related operational matters. In general, the Director
125:
The
Validation Body ensures that appropriate mechanisms are in place to protect the interests of all parties within the CCEVS participating in the process of IT security evaluation. Any dispute brought forth by a participating party, (i.e., sponsor of an evaluation, product or Protection Profile
117:
The principal objective of the NIAP Validation Body is to ensure the provision of competent IT security evaluation and validation services for both government and industry. The
Validation Body has the ultimate responsibility for the operation of the CCEVS in accordance with its policies and
58:
The long-term goal of NIAP is to help increase the level of trust consumers have in their information systems and networks through the use of cost-effective security testing, evaluation, and validation programs. In meeting this goal, NIAP seeks to:
118:
procedures, and where appropriate: interpret and amend those policies and procedures. The NSA is responsible for providing sufficient resources to the
Validation Body so that it may carry out its responsibilities.
92:
76:
Foster research and development in IT security requirements definition, test methods, tools, techniques, and assurance metrics
165:
35:
79:
Support a framework for international recognition and acceptance of IT security testing and evaluation results
155:
43:
160:
82:
Facilitate the development and growth of a commercial security testing industry within the U.S.
39:
17:
8:
66:
Champion the development and use of national and international standards for IT security
102:
170:
69:
140:
149:
32:
63:
Promote the development and use of evaluated IT products and systems
135:
46:(NSA), and was originally a joint effort between NSA and the
47:
38:
initiative to meet the security testing needs of both
147:
93:Common Criteria Evaluation and Validation Scheme
42:consumers and producers that is operated by the
48:National Institute of Standards and Technology
29:National Information Assurance Partnership
112:
98:Product / System Configuration Guidance
14:
148:
141:NIAP Consistency Instruction Manuals
24:
25:
182:
129:
108:Consistency Instruction Manuals
13:
1:
7:
86:
10:
187:
53:
166:National Security Agency
44:National Security Agency
40:information technology
113:NIAP Validation Body
136:NIAP official site
103:Protection Profile
16:(Redirected from
178:
156:Crime prevention
21:
186:
185:
181:
180:
179:
177:
176:
175:
146:
145:
132:
115:
89:
70:Common Criteria
56:
23:
22:
15:
12:
11:
5:
184:
174:
173:
168:
163:
158:
144:
143:
138:
131:
130:External links
128:
114:
111:
110:
109:
106:
99:
96:
88:
85:
84:
83:
80:
77:
74:
73:
72:
64:
55:
52:
9:
6:
4:
3:
2:
183:
172:
169:
167:
164:
162:
161:Data security
159:
157:
154:
153:
151:
142:
139:
137:
134:
133:
127:
123:
119:
107:
104:
100:
97:
94:
91:
90:
81:
78:
75:
71:
68:
67:
65:
62:
61:
60:
51:
49:
45:
41:
37:
34:
33:United States
30:
19:
124:
120:
116:
101:Product and
57:
31:(NIAP) is a
28:
26:
150:Categories
105:Evaluation
36:government
171:Security
87:Services
50:(NIST).
95:(CCEVS)
54:Purpose
27:The
18:NIAP
152::
20:)
Text is available under the Creative Commons Attribution-ShareAlike License. Additional terms may apply.