The CESeCore project – co-founded by EU Eurostars Programme, has achieved Common Criteria Evaluation Assurance Level 4+ (CC EAL4+) certification.
The CESeCore project – Certified Security Core – co-funded by EU Eurostars Programme, delivers a software product that will facilitate implementation of a wider range of trustworthy systems. This facilitation is all the more attractive, as the CESeCore security core product is being made available under a cost-free open source license.
Stockholm, Sweden – June 20, 2012 – PrimeKey Solutions AB, the founder and commercial force behind the most downloaded open source PKI projects, announces today that the CESeCore project has achieved Common Criteria Evaluation Assurance Level 4+ (CC EAL4+) certification. Products and services that use such a certified security core can more easily certify their own complementary resources. Therefore, organizations that build their own security enabled applications on top of the CESeCore security functions will reduce both resource needed and time to market.
When we created CESeCore, we added the most important security functions from certificate management, certificate validation and time-stamping, into a reusable Java Enterprise component library. And we worked patiently to have it Common Criteria Certified! Anyone who needs these security functions no longer has to re-invent the wheel.
– Tomas Gustavsson, CTO PrimeKey
The CESeCore project has achieved its primary purposes: to make the CESeCore Security Core 1) Common Criteria EAL4+ certified; 2) publicly available for integration with enterprise applications. Vendors aiming to attain their own Common Criteria certification will continue to draw significant benefits through the use of the fully approved CESeCore library. The certified CESeCore has also taken PrimeKey's EJBCA Enterprise edition a steady leap forward towards its own final Common Criteria certification.
– Admir Abdurahmanovic VP PrimeKey, Programme Director CESeCore
The CESeCore project was initiated under the aegis of Eurostars. A consortium of IT-security companies makes up the CESeCore project partnership:
PrimeKey Solutions AB (Sweden, project lead)
Multicert S.A. (Portugal)
E-Imza Bilisim (Turkey)
Commfides Norge A.S. (Norway)
As a natural consequence of the project, each partner has been integrating the CESeCore software product with its own products. For example, PrimeKey's EJBCA – free, open source Java software product that implements complete public key infrastructure – is already built around this security core, heavily accessing it through the core's public interfaces.
A major thank you to EUREKA's Eurostars Programme and to respective National Authorities. Additional sponsors were Atlassian, Microsoft, SafeNet and Utimaco. Special thanks to ANSSI (The French Network and Information Security Agency) by accepting to be the Certification Body, and to the official Evaluation Body Oppida, for skillfully performed laboratory evaluations and guidance in the process.
Tomas Gustavsson, CTO
+46 707 42 10 96
+46 709 88 60 48