Telecom Technology Center LOGO :::
Home  |  Site Map  |  中文  
ABOUT TTC | BULLETIN | SERVICES | CONTACT US
Picture
:::
Diagram mark
 NPAC
Diagram mark
 InfoCom Security Testing Services
Diagram mark
 DTV Testing Services
Diagram mark
 Wireless Broadband Certification Services
Diagram mark
 Photovoltaic Modules Certification Services
 
 
:::
Services

InfoCom Security Technology Services
Introduction
InfoCom Security Technology Services
Introduction
Copyright © 2007 Telecom Technology Center.
print
 
Common Criteria
Cryptographic Module
Consulting
Training
Contact Us

 

IT Security Evaluation Laboratory(ITSEL)

In the highly developed information environment, Information Communication Security has become the subject that many countries has paid highly attention and taken into account when information is used, and security assurance for IT security products is the foundation for construction a secure information society. TTC has devoted itself to the latest technology for evaluation and testing of IT Security since it was established, and assisted the government in establishing the National Certification Scheme for IT Security Products, and counseled positively with the domestic product developers to obtain product certification in Taiwan and foreign countries.

ITSEL is the 1st IT security evaluation laboratory accredited by Taiwan Accreditation Foundation (TAF) with ISO/IEC 17025 standard (Aaccreditation serial number: 1519) to evaluate IT security products for compliance with Common Criteria for Information Technology Security Evaluation (Common Criteria, ISO/IEC 15408).

ITSEL has cooperated with the international recognized laboratories on a long-term basis to provide advanced evaluation services for IT security products. ITSEL also assists the Government participating in the International organization of Common Criteria Recognition Arrangement (CCRA) to achieve the goal of "Once certified, globally accepted".

In addition to common criteria evaluation service , ITSEL is one of the Cryptographic and Security Testing (CST) laboratories which are accredited by the National Voluntary Laboratory Accreditation Program (NVLAP) of the National Institute of Standards and Technology (NIST) (NVLAP Lab Code:200824-0) to perform cryptographic modules testing for compliance with Federal Information Processing Standards - Security Requirements for Cryptographic Module (FIPS 140-2). Furthermore, ITSEL also provides the consultant service of Personal Identity Verification (PIV, FIPS 201) by co-worked with GSA Evaluation Program Approved Laboratory.

ITSEL provides a full range of professional services to help our customers develop IT products meeting certain security requirements for Common Criteria, FIPS 140-2, or FIPS 201 standards. Vendors looking for professional services may apply for evaluation, testing or validation for IT security products, cryptographic modules, or PIV products/services nearby to ITSEL. As a result, vendors would benefit from our services by ensuring the specification of products or cryptographic modules conform to the international standards
Our Services Diagram mark:up
項目標題符號 Common Criteria Evaluation (ISO/IEC 15408)
 
Common Criteria (ISO/IEC 15408) is the most commonly used standard in the world for evaluation of IT security products. It provides the grounds for confidence in IT security through actions taken during the processes of developing, evaluating and operating products and systems. Evaluation Assurance Level (EAL) is classified from 1 to 7 to determine the security level of IT security products.
 
項目標題符號 Cryptographic Modules Testing(FIPS 140-2)
 
FIPS 140-2 (ISO/IEC 19790) is an international standard for testing of cryptographic modules. The standard provides 4 level of security; level 1 to level 4. Products validated as conforming to FIPS 140-2 are accepted by the Federal agencies of USA and Canada. Vendors of cryptographic modules may have their product tested by applying the requirement for testing and validation to ITSEL.
 
項目標題符號 Personal Identity Verification Evaluation (FIPS 201-1)
 
FIPS 201: Personal Identity Verification of Federal Employees and Contractors is developed to satisfy the requirements of Homeland Security Presidential Directive 12(HSPD-12:2004). Once evaluated and approved by the FIPS 201 Evaluation Program, products and services are placed on the FIPS 201 Approved Products List (APL). Agencies can then procure these products/services from suppliers for their HSPD-12 implementations. ITSEL provides the consultant service of Personal Identity Verification (PIV, FIPS 201) by co-worked with GSA Evaluation Program Approved Laboratory.
 
項目標題符號 Consulting
 
ITSEL provides consulting services to help our customers identify compliance problems for meeting international standards upon product design or implementation, and to understand the requirements involved with the design, production and documentation of IT security products and cryptographic modules to be compliant with Common Criteria and FIPS 140-2.
 
項目標題符號 Training
 
ITSEL's dedicated team of professionals possesses the ability to provide our customers training with customized requirements. Our training services include security product design and development of smart cards and network security, and documentation development of the standards required documents.
Reference Diagram mark:up
項目標題符號 Domestic Regulation
項目標題符號 International Standards

  • Common Criteria

    U.S. Common Criteria Evaluation and Validation Scheme

    The Canadian Common Criteria Evaluation and Certification Scheme

    UK IT Security Evaluation and Certification Scheme

    German IT Security Certificates

    Japanese IT Security Evaluation and Certification Scheme

  • Cryptographic Modules Testing (FIPS 140)

    •  
    Links & Organizations Diagram mark:up
    Domestic Links:
    National Communications Commission(NCC) National Communications Commission(NCC)
     
    Information and Communication Security Technology Center(ICST) Information and Communication Security Technology Center(ICST)
     
    International Links:
    National Institute of Standards and Technology (NIST)   National Institute of Standards and Technology (NIST)
    Communications Security Establishment Canada (CSEC)    Communications Security Establishment Canada (CSEC)
    Cryptographic Module Validation Program (CMVP)  Cryptographic Module Validation Program (CMVP)
    Cryptographic Algorithm Validation Program (CAVP)  Cryptographic Algorithm Validation Program (CAVP)
     
    Contact ITSEL Diagram mark:up
    Taipei 
    Kaohsiung
    E-mail             		:+886-2-8953-5651
    :+886-7-627-7063 ext. 7063
    itsel@ttc.org.tw   
    Copyright © 2007 Telecom Technology Center.