Introduction

The development and production sites of IT products can be evaluated and certified separately pursuant to the Common Criteria. 

Such site certification occurs, as a rule, with a view towards reusing the results in later certification processes for IT products that are developed or produced at this location. Site certifications make synergies in the product certifications possible if, for example, different products of the same type and possibly from different developing companies are produced at one site.

The CCRA Supporting Documents: 

• CCDB-2007-11-001 Supporting Document Guidance - Site Certification, Version 1.1 
• Joint Interpretation Library (JIL) - Minimal Site Security Requirements

is also used in particular during the evaluation.

The consideration of a site certificate in a product certificate occurs in the scope of the product evaluation in the case of the Common Criteria Lifecycle - ALC assurance class. The particular process rules for inclusion are defined in the specific AIS documents.

Site certificates are not automatically subject to the international recognition agreements, but their inclusion in the results of a site evaluation is supported in the scope of the agreements. The certification body concerned with inclusion makes the individual decisions.

We provide but not limited to the following services to support your CC evaluation and certification: 

1. Site security preliminary assessment with scoping;
2. Supporting on site certification preparation and documentation, i.e.,
• Site Security Target (SST);
• CC life-cycle support assurance (ALC).
3. Site certification audit support, i.e. pre-assessment, audit support.

Initiate and contact

The following information is required to initiate the service discussion: 

   Contact：

   Philip KU

   philip.ku@tksg.global  [ PGP Public Key ]

   (PGP Fingerprint: BE11 C1CC BFE2 A3A9 4929  3D1C 10FF C3BE A51C 92F7)