A Closer Look into Common Criteria Certification

10:00 a.m. Chicago | 11:00 a.m. New York | 8:00 a.m. Los Angeles

You may have heard that Common Criteria certification can help expand your Information Technology (IT) business, but you may also have heard that it is a long and complex process. How do you know when your team is ready to move forward successfully?

Join UL Solutions experts for a webinar that will identify the key indicators for success when first exploring Common Criteria security evaluation. We will start by discussing what Common Criteria is and learn the major drivers for obtaining a Common Criteria certification. We will also provide a high-level overview of the certification process, highlighting key milestones along the way and the overall project timeframe.

In the second half of the webinar, we will discuss how the requirements of Common Criteria translate into the involvement of product development teams. We will identify the common pitfalls that can slow down certification and share proven ways to avoid them.

Topics covered

Part one: A primer on Common Criteria (15 minutes)

• Who requires Common Criteria, and why go through the process?
• What is involved in the process?
• What is the market for Common Criteria certification?
• What if I am a non-U.S.-based company?
• What is the role of the Common Criteria testing laboratory?
• How long will the evaluation process take? What are the project deadlines?
• What happens if there is an update to my product after obtaining the certification?
• What happens after I get the certification?
• How long does the certification stay valid and what happens after that?

Part two: Preparing for Common Criteria with confidence (30 minutes)

• How can I best prepare for a Common Criteria evaluation?
• What are the most common causes of failed Common Criteria projects?
• What’s the right time to start thinking about Common Critieria in the development cycle?
• Do I need management buy-in and why?
• Who in my organization needs to be involved?
• How much involvement is required from development teams?
• What is the time commitment needed for the resources assigned to Common Criteria?
• How does product architecture impact certification efforts?
• How does the use of open-source or third-party libraries impact evaluation?
• What are the policies regarding vulnerabilities, and how do they impact certification?
• What are three key things I can do to make the Common Criteria process as smooth as possible?

This webinar is ideal for companies that:

• Were recently introduced to Common Criteria and are confused about what is required.
• Are investigating new opportunities in security and want to learn about high-security evaluations in the largest worldwide security standard.
• Are interested in efficient evaluations and want to discover ways to make the process easier and more efficient.
• Want to distinguish themselves from their competitors by demonstrating high-security suitability and want to find out how Common Criteria can help them build market- and mindshare among cybersecurity consumers.
• Want to learn more about the ins and outs of Common Criteria.

This webinar will allow attendees to:

• Understand the Common Criteria ecosystem and lifecycle.
• Know when to start thinking about security certification.
• Be ready for a strong start by preparing in advance.
• Avoid disappointment in and derailment of the certification project.

Can’t make the live event? Register to receive a link to the recording.

Presenters

Brad Mitchell, senior security engineer

Meghana Venkata Achanta, security engineer

Moderator

Milton Padilla, sales executive