|
|
|
| ::: |
|
InfoCom Security Testing Services |
InfoCom Security Testing Services
|
| Copyright © 2007 Telecom Technology Center. |
|
 |
| |
|
| General Information |
|
|
|
TTC has been engaged in researches and technical services of information security since it was founded in 2004. TTC's InfoCom Security Testing Laboratory (ISTL) is the first IT product evaluation laboratory, being awarded the ISO/IEC 17025:2005 accreditation in Taiwan and recognized for its technical excellence in the information security and the evaluation of security products.
ISTL assists the government in establishing the national IT security product certification scheme and works with the security industry of Taiwan to strengthen the industrial competitiveness worldwide. ISTL not only cooperates with the well-established international certification bodies and evaluation laboratories but also promotes Taiwan's participance in the Arrangement on the Recognition of Common Criteria Certificates (CCRA) to accomplish the goal of "Once certified, globally accepted".
|
|
| Accreditations |
 |
|
- TTC's InfoCom Security Testing Lab has been awarded the ISO/IEC 17025: 2005 accreditation by Taiwan Accreditation Foundation (TAF).
- The evaluation process of ISTL conforms to ISO/IEC 15408 standard and the construction of the lab complies with the security requirements of Information Technology Baseline Protection Manual, Germany (ITBPM) and Handbook 150-20 of National Institute of Standards and Technology, USA (NIST).
|
|
| Technical Capabilities |
|
|
- IT Security Product Evaluation.
- Cryptography Module Testing.
- Smart card Security Protection.
- Network Security Protection.
  
|
|
| Services |
|
|
Information Technology Security Product Evaluation -
The Common Criteria (ISO/IEC 15408) is the global applied standard for IT security product evaluation. It provides the grounds for confidence in IT security through actions taken during the processes of developing, evaluating and operating products and systems. Evaluation Assurance Level (EAL 1-7) is classified to determine the security level of IT security products. The categories of evaluated products include:
- Smart Cards and Smart Cards related devices and systems (chips, operating systems, applications and card readers, etc.).
- Networks and Networks Security related devices and systems (Firewalls, wireless adaptors, wireless access points, trusted platform modules, public key infrastructure, virtual private network, intrusion detection system/intrusion protection system, etc.).
- Others (Access Control Devices and Systems, Digital Signature Devices and Systems, Databases, and Operating Systems, etc.).
-
Information Technology Security Consulting
-
TTC provides a wide range of security consulting services for our customers. With a staff of highly qualified engineers, we assist our customers in verifying the trustworthiness of their IT security products, IT security management and related security policies and strategies. The scope of our IT security consulting services includes:
- Common Criteria (ISO/IEC 15408).
- Federal Information Processing Standards (FIPS 140-2).
- Information Security Management System (ISO/IEC 27001).
- General Requirements For the Competence of Testing and Calibration Laboratories (ISO/IEC 17025).
- Information Technology Baseline Protection Manual (ITBPM).
- Feasibility study on IT product evaluation.
- Physical security and protection measures.
- Other customized services requested by our customers.
-
Information Technology Security Training
-
TTC has been working with well-established international evaluation laboratories and certification bodies for promoting IT security in Taiwan. We also provide practical evaluation and testing operation training courses to prepare our customers for the evaluation of their security products. The scope of our IT security training services includes:
- Common Criteria (ISO/IEC 15408)
- Federal Information Processing Standards (FIPS 140-2).
- IT security protection.
- Analysis of product vulnerability.
- Audit of physical environment.
- Other customized training programs requested by our customers.
|
|
| Downloads |
|
|
|
|
|
|
| Contacts |
|
|
Tel: 886-2-8953-5600 ext.328 (Taipei)
886-7-695-5008 (Kaohsiung)
email: istl@ttc.org.tw
|
  |
|
|
