2020 Common Criteria Statistics Report
2
min reading time
Majority of CC certifications by the Italian scheme was delivered by CCLab
We are proud to share that 7 out of the 12 Common Criteria certifications in 2020 under the Italian scheme (OCSI) were issued based upon CCLab evaluations. 2020 was an unusual year in the business world due to the pandemic caused by COVID19. However, for the CC community and also for CCLab it was a successful year looking at the number of Common Criteria certifications achieved.
2020 was the second-best year ever since the international Common Criteria methodology was created with 388 certified products. In total, 187 high assurance evaluations (EAL4-EAL7) were carried out. Among those, we can find 72 EAL4 evaluations, 84 EAL5 evaluations, 30 EAL6 evaluations, and 1 EAL7 evaluation. Here we can mention that 6 out of the 72 EAL4 evaluations were delivered by CCLab.
A total of 82 products were certified using low assurance evaluations (EAL1-EAL3). The most frequent low assurance level was EAL2, with 57 certifications. CCLab delivered 1 of these in 2020.
On the other hand, the trend to use Protection Profiles on evaluations has been even larger in 2020. In total, 119 products were certified with a Protection Profile without assigned EAL. (Source: 2020 Common Criteria Statistics Report)
We are pleased to announce that CCLab helped to achieve 7 Common Criteria certifications for 4 customers, among which 2 (ID & Trust and I4P Informatics Ltd.) were returning customers.
The following 7 Common Criteria evaluations by CCLab were deemed to be worthwhile by OCSI with a certificate in 2020:
Developer: Forcepoint
26 May 2020
Assurance level CC: EAL4 + ALC_FLR.2
Read more HERE
Developer: I4P-informatikai Kft. (I4P Informatics Ltd.)
2 September 2020
Assurance level CC: EAL4 + AVA_VAN.5, ALC_FLR.3
Read more HERE
Nutanix Enterprise Cloud (AOS & AHV) v5.15
Developer: Nutanix, Inc.
9 October 2020
Assurance level CC: EAL2 + ALC_FLR.2
Read more HERE
IDentity Applet v3.4 / eIDAS on NXP JCOP 4 P71
IDentity Applet v3.4 / QSCD on NXP JCOP 4 P71
IDentity Applet v3.4 / PACE-EAC1 on NXP JCOP 4 P71
IDentity Applet v3.4 / BAC on NXP JCOP 4 P71
Developer: ID & Trust Ltd.
28 October 2020
Assurance level CC: EAL4 +
Read more HERE
Congratulations to our respected clients for the successful product certifications and we also look forward to future collaborations.
Related downloadables
Related downloadables
Common Criteria Evaluation Process infographics
Common Criteria Evaluation Process infographics
This downloadable infographics introduces the Common Criteria Evaluation process to you. Explore now for free.
Guide and Checklist for Common Criteria Evaluations - updated with EUCC Scheme
Guide and Checklist for Common Criteria Evaluations - updated with EUCC Scheme
Learn everything you need to know for a successful Common Criteria certification project. Save costs and effort with your checklist.
ETSI EN 303 645 infographics for Consumer IoT devices
ETSI EN 303 645 infographics for Consumer IoT devices
Download our ETSI EN 303 635 infographics today and learn about the product certification process for this consumer IoT device cybersecurity standard.
Related news
From Standards to Trust: How Common Criteria Shapes Cybersecurity Assurance
In an increasingly interconnected world, cybersecurity has become more than just a technical requirement, it's a critical shield protecting organizations from potential digital threats. Common Criteria (CC), an internationally recognized standard also known as ISO/IEC 15408, emerges as a comprehensive framework that meticulously evaluates the security properties of IT products and systems. This international standard provides a structured approach to assessing technological security, offering governments, enterprises, and technology developers a robust methodology for understanding and validating the security mechanisms embedded within their digital solutions. Moreover, Common Criteria serves as a critical benchmark, ensuring that technological products meet rigorous security standards before entering the marketplace.
10
min reading time
Is EUCC Enough? Addressing Gaps in European Cybersecurity Certification
As Europe advances its digital transformation agenda, securing its technological infrastructure has become a top priority. At the center of this ambition lies the European cybersecurity certification ecosystem. Most notably, the European Cybersecurity Certification Scheme (EUCC). Designed to harmonize security assurance practices across EU member states, EUCC is the first concrete step under the EU Cybersecurity Act to create a unified framework for certifying ICT products and services. But while EUCC represents a major achievement in digital sovereignty, a crucial question remains: Is it enough? This article explores what the European Cybersecurity Certification does well, where its current limitations lie, and what additional steps are necessary to create a truly resilient cybersecurity landscape across Europe.
7
min reading time
Strategic Partnership for Cybersecurity – CCLab and WonSec Technology Join Forces for EUCC Certification
On March 21, 2025, a special event took place at CCLab’s headquarters in Budapest, Hungary: we had the pleasure of welcoming the delegation of WonSec Technology, and together we signed a strategic cooperation agreement focused on the EU Cybersecurity Certification Scheme on Common Criteria (EUCC). This partnership marks a milestone not only for CCLab but for the broader European certification ecosystem as well. Our joint goal is to support the secure and compliant entry of ICT products and services into the European market, especially in light of the soon-to-be mandatory EUCC requirements.
3
min reading time