2020 Common Criteria Statistics Report
2
min reading time
Majority of CC certifications by the Italian scheme was delivered by CCLab
We are proud to share that 7 out of the 12 Common Criteria certifications in 2020 under the Italian scheme (OCSI) were issued based upon CCLab evaluations. 2020 was an unusual year in the business world due to the pandemic caused by COVID19. However, for the CC community and also for CCLab it was a successful year looking at the number of Common Criteria certifications achieved.
2020 was the second-best year ever since the international Common Criteria methodology was created with 388 certified products. In total, 187 high assurance evaluations (EAL4-EAL7) were carried out. Among those, we can find 72 EAL4 evaluations, 84 EAL5 evaluations, 30 EAL6 evaluations, and 1 EAL7 evaluation. Here we can mention that 6 out of the 72 EAL4 evaluations were delivered by CCLab.
A total of 82 products were certified using low assurance evaluations (EAL1-EAL3). The most frequent low assurance level was EAL2, with 57 certifications. CCLab delivered 1 of these in 2020.
On the other hand, the trend to use Protection Profiles on evaluations has been even larger in 2020. In total, 119 products were certified with a Protection Profile without assigned EAL. (Source: 2020 Common Criteria Statistics Report)
We are pleased to announce that CCLab helped to achieve 7 Common Criteria certifications for 4 customers, among which 2 (ID & Trust and I4P Informatics Ltd.) were returning customers.
The following 7 Common Criteria evaluations by CCLab were deemed to be worthwhile by OCSI with a certificate in 2020:
Developer: Forcepoint
26 May 2020
Assurance level CC: EAL4 + ALC_FLR.2
Read more HERE
Developer: I4P-informatikai Kft. (I4P Informatics Ltd.)
2 September 2020
Assurance level CC: EAL4 + AVA_VAN.5, ALC_FLR.3
Read more HERE
Nutanix Enterprise Cloud (AOS & AHV) v5.15
Developer: Nutanix, Inc.
9 October 2020
Assurance level CC: EAL2 + ALC_FLR.2
Read more HERE
IDentity Applet v3.4 / eIDAS on NXP JCOP 4 P71
IDentity Applet v3.4 / QSCD on NXP JCOP 4 P71
IDentity Applet v3.4 / PACE-EAC1 on NXP JCOP 4 P71
IDentity Applet v3.4 / BAC on NXP JCOP 4 P71
Developer: ID & Trust Ltd.
28 October 2020
Assurance level CC: EAL4 +
Read more HERE
Congratulations to our respected clients for the successful product certifications and we also look forward to future collaborations.
Related downloadables
Related downloadables
Common Criteria Evaluation Process infographics
Common Criteria Evaluation Process infographics
This downloadable infographics introduces the Common Criteria Evaluation process to you. Explore now for free.
Guide and Checklist for Common Criteria Evaluations - updated with EUCC Scheme
Guide and Checklist for Common Criteria Evaluations - updated with EUCC Scheme
Learn everything you need to know for a successful Common Criteria certification project. Save costs and effort with your checklist.
ETSI EN 303 645 infographics for Consumer IoT devices
ETSI EN 303 645 infographics for Consumer IoT devices
Download our ETSI EN 303 635 infographics today and learn about the product certification process for this consumer IoT device cybersecurity standard.
Related news
Preparing Legacy Systems for Common Criteria Certification
Legacy systems power critical operations across industries worldwide, yet they present unique challenges when organizations pursue Common Criteria certification. The clock is ticking for manufacturers and enterprises who must navigate complex compliance requirements while maintaining operational continuity. Organizations pursuing Common Criteria certification must address unique challenges when dealing with legacy infrastructure, but with the right approach, success is achievable. The urgency cannot be overstated. Regulatory deadlines approach rapidly, and the cost of non-compliance continues to escalate. Legacy systems that once served as reliable workhorses now require strategic transformation to meet modern security standards. This guide provides actionable strategies to prepare your legacy infrastructure for certification success.
10
min reading time
EUCC Behind eIDAS 2.0: The New Pillar of Security in Europe’s Digital Identity Framework
The European Union has launched an ambitious digital transformation initiative centered on digital identity and trust services. Building upon the foundation of the original eIDAS Regulation (Regulation (EU) No. 910/2014), the updated eIDAS 2.0 framework (Regulation (EU) 2024/1183) establishes a European Digital Identity (EUDI) Framework that requires all Member States to make interoperable EU Digital Identity Wallets available to citizens and businesses by 2026. This effort aims to create consistency in legal certainty, interoperability, and data protection across borders, strengthening trust in Europe’s digital landscape.
9
min reading time
Lifecycle Management of Common Criteria Certification: Renewals, Maintenance, and Revocations
The journey of achieving Common Criteria certification represents just the beginning of a complex, ongoing process that demands continuous attention and strategic management. Organizations worldwide invest significant resources in obtaining these prestigious security certifications, yet many underestimate the critical importance of proper lifecycle management once their products become Common Criteria certified. Effective CC certification lifecycle management ensures continuous security assurance, regulatory compliance, and market credibility throughout a product’s operational lifespan.
9
min reading time