DriveLock achieves Common Criteria EAL3 + certification recognized by the BSI. The specialist for IT and data security thus fulfills an important security standard for public bodies and critical infrastructures.
DriveLock SE, one of the leading international specialists for IT and data security, has received the Common Criteria EAL3 + certification for its device and application control solution: With this internationally recognized certification, the high level of trustworthiness and the security standard of the DriveLock Agent 2019.2 are based on a given set attested to configurations. The evaluation was carried out by atsec information security AB in Danderyd, Sweden - in accordance with the requirements of the Common Criteria (CC), version. 3.1 release 5.
Certificate for security standards for critical infrastructures
Anton Kreuzer, CEO of DriveLock: “This certification makes us very proud and confirms the high safety standards that we place on our products and their development. With the Common Criteria EAL3 + certification for our DriveLock Agent 2019.2, we meet the high security standards that public authorities and critical infrastructures in particular need to secure their systems. This sets us apart from the competition in a national and international comparison. "
Object of evaluation
The DriveLock Agent 2019.2 (device and application control) was assessed after a series of tests carried out by a licensed evaluation facility for Common Criteria. atsec information security AB holds this license and is also accredited for Common Criteria by the Swedish accreditation body according to ISO / IEC 17025.
The DriveLock application and device control software was tested on a workstation with the Windows 10 operating system. The subject of the investigation were:
- Block unauthorized and malicious devices, preventing unauthorized data import or export.
- Block the execution of unauthorized applications and their effects on the system.
- Auditing of events that trigger the security functions mentioned above.
BSI-recognized certification for IT security companies
Some facilities, especially critical infrastructures such as those in the public sector or energy supply, are bound by certain guidelines. This also includes the use of certified security solutions. The Evaluation Assurance Level (EAL) is recognized as a certification by the Federal Office for Information Technology (BSI) and is therefore particularly relevant for public institutions and KRITIS facilities. For DriveLock, Level 3+ is an important award that only a few companies in the industry achieve. DriveLock of course continues the high standards in the further development of the DriveLock Agent. For example, the security specialist is also further developing the “DiskEncrypt” encryption software, which is approved by the BSI for VS-NFD / NATO RESTRICTED workplaces. DriveLock provides the awarded certificate and the associated report online.
More at DriveLock.com
About DriveLock The German company DriveLock SE was founded in 1999 and is now one of the leading international specialists for IT and data security with branches in Germany, France, Australia, Singapore, the Middle East and the USA. In times of digital transformation, the success of companies depends to a large extent on how reliably people, companies and services are protected against cyber attacks and the loss of valuable data. DriveLock is committed to protecting corporate data, devices and systems. For this purpose, the company relies on the latest technologies, experienced security experts and solutions based on the zero trust model. In today's security architectures, zero trust means a paradigm shift based on the maxim "Never trust, always verify". In this way, data can be reliably protected even in modern business models.
Matching articles on the topic