Evaluation and validation services
Security is a key business enabler. IT users are increasingly aware of the need for secure solutions and therefore seek to buy products which are recognised as being secure.
IT security cannot be seen, and demonstrating that suitable security exists within a product is not straightforward. Testing that it is working correctly can be very complicated and knowing that it has been tested correctly requires trust in both the testing organisation and the methodology that was used.
An independent Security Evaluation against internationally recognised criteria differentiates your product to potential customers demonstrating the importance of security.
Logica's Security Practice started in 1985. In 1989, the Logica Evaluation Facility became the first facility to be fully licensed under the new UK IT Security Evaluation and Certification Scheme as a CESG1 Licensed Evaluation Facility (now formerly a CommerciaL Evaluation Facility of CLEF).
We now operate one of only 4 CLEFs in the UK providing formal evaluations under both ITSEC and the more recent Common Criteria (ISO 15408) Schemes.
For international use, the certificate awarded to the products need mutual recognition with other evaluation schemes around the world, and Logica can undertake evaluation to Common Criteria to ensure that any resulting certificate is mutually recognised. As products evolve and undergo enhancements certificate maintenance services will be required to ensure that security certification for your product remains valid.
We sell our evaluation and validation services to major product vendors, and system integrators the world over, who are seeking to qualify their product or system by means of an independent security evaluation. Gaining formal security evaluation against your company's products or solutions increases their value in the marketplace. Evaluation and certification will provide you with a key differentiator, increased credibility, and can erect an effective barrier to entry for your competitors.
The Logica CLEF has undertaken a wide range of product and system evaluations. We are proud to include names such as Oracle, Sun, Microsoft, Cyberguard, Thales e-Security, IBM, Hewlett Packard, Sony and the UK's Ministry of Defence (MOD) in our client list.
We can provide separate, impartial pre-evaluation consultancy and evaluation - a requirement of Evaluation Scheme rules. Logica can provide pre-evaluation consultancy to assist product and system developers through the evaluation process, and to develop the Common Criteria protection profiles for the systems. We can provide informal evaluations against ITSEC or the Common Criteria. Where necessary we can produce the common criteria security profiles before performing an evaluation against them. The Logica is licensed to perform security evaluations at all ITSEC and Common Criteria levels. Following successful validation, we can include the required certification services to ensure that the awarded certificate receives the appropriate mutual recognition with other evaluation schemes around the world. As products evolve and undergo enhancements we can also provide maintenance services to ensure that security certification for your product remains valid over the long-term.
If you would like further information, please call us on: +44 20 7446 4261.