2
min reading time
JTSEC each year publishes the Common Criteria Statistics Reports collecting all certifications and certified products, giving detailed information about the actual year’s evaluations based on different aspects. As last year, we summarized the results in a blog post. We are proud to share that in 2021 CCLab conducted 7 Common Criteria evaluation projects under the Italian scheme (OCSI). According to Common Criteria statistics, the number of certified products has increased in the last few years, compared to 2019 128 more products were certified in 2021 than in 2019.
Despite the pandemic in 2021, the number of certified software or hardware has increased by 10%, and the number of CC certifications has never been that high before. The statistics show that 2021 has been the year with the highest number of Common Criteria certifications in history with a total number of 411 certifications surpassing the 400 milestones for the first time, followed by 2016 with its 395 certifications.
In the next part of this article, you can view statistics comparing 2020 and 2021 based on the reports published by JTSEC.
Moreover, a total of 93 products were certified using low assurance evaluations, which are the EAL1- EAL3, these categories represent 22.63% of all the evaluations. In 2021 the number of low assurance evaluations increased, which means last year 11 more certificates were issued at these assurance levels compared to 2020. Furthermore, the statistics show that the most frequently chosen assurance level was EAL2, with 71 certifications. During the past 2 years, EAL4 certification has grown steadily, which means that the highest interest is in EAL4 certification.
The above data also show that the number of high assurance evaluations has stagnated for EAL4 and EAL7, while the number of certified products increased in EAL6 and decreased for EAL5 evaluations. The trend to use protection profiles on evaluations has been larger in 2021 than in 2020, which means that 149 products were certified with a Protection Profile without assigned EAL.
This report shows, compares, and presents different historical data for 2021 and the last few years, based on Common Criteria official portal data. Furthermore, the statistics show that the evaluated product numbers are expanding year by year. In 2022 our plan is to complete at least 10 Common Criteria evaluation projects by the end of the year.
Congratulations to our customers, for the successful product certifications. We look forward to future collaborations.
This downloadable infographics introduces the Common Criteria Evaluation process to you. Explore now for free.
Learn everything you need to know for a successful Common Criteria certification project. Save costs and effort with your checklist.
Download our ETSI EN 303 635 infographics today and learn about the product certification process for this consumer IoT device cybersecurity standard.
As cyber threats become more sophisticated, businesses are compelled to implement rigorous protection strategies to stay compliant and secureCertification labs, like CCLab, play a crucial role in supporting businesses with expert testing, assessment and comprehensive compliance services, and specialized training. These labs offer services ranging from security audits to penetration testing, ensuring businesses remain resilient against evolving cyber threats while meeting regulatory standards. This article explores the indispensable role of certification labs, highlighting how they enhance cybersecurity, ensure compliance, and support a safer digital landscape.
9
min reading time
This year, CCLab sponsored the opening reception of the International Common Criteria Conference (ICCC) in Qatar. Like in previous years, CCLab experts were present during the event meeting the most important stakeholders of Common Criteria. The ICCC is a highly prestigious professional event now in its 23rd year. It provides opportunities for networking and various forums to discuss CC policy and development. It is aimed at participants involved in the specification, development, evaluation, certification, and validation of IT security products and systems.
5
min reading time
In an era where digital threats grow in complexity and frequency, cybersecurity is no longer a secondary consideration but an essential part of manufacturing operations. Compliance with security standards offers manufacturers a structured approach to managing the growing risks of digital threats and securely handling sensitive data. Compliance also helps companies meet industry regulations, protect intellectual property, and avoid potentially devastating financial losses.
8
min reading time