Feds certify lab to test security apps

NIAP CC Evaluation and Validation Scheme home page

The government has certified CygnaCom Solutions Inc.'s Security Evaluation Laboratory to test information security software to assure users that security products perform the functions that vendors claim.

The laboratory accreditation, announced Aug. 14, comes from the National Infrastructure Assurance Partnership, a collaboration of the National Institute of Standards and Technology and the National Security Agency. The partnership oversees the certification of laboratories and the testing of products under the Common Criteria Evaluation and Validation Program, an international standard that experts are encouraging civilian agencies to consider when purchasing security products.

The CygnaCom laboratory is accredited under the NIST National Voluntary Laboratory Accreditation Program to perform testing for the first four levels of evaluation assurance available under the Common Criteria scheme.

National security agencies are already required to give preference to products that have been accredited under the Common Criteria program. NIST issued a set of draft guidelines in March suggesting that civilian agencies also give preference to products that have been accredited under the program.

"Use of products with an appropriate degree of assurance contributes to security and assurance of the system as a whole and thus should be an important factor in IT procurement decisions," the draft stated.

NIST is collecting comments, and final guidelines are due later this year.

A full list of Common Criteria testing laboratories is due soon on the NIAP Common Criteria site.


  • Defense
    Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

    Army wants to spend nearly $1B on cloud, data by 2025

    Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

Stay Connected


Sign up for our newsletter.

I agree to this site's Privacy Policy.