In partnership with IBM, Red Hat has attained National Information Assurance Partnership (NIAP) for Controlled...
Access Protection Profile compliance.
The so-called Common Criteria for Information Security Evaluation (CAPP/EAL4+) provides users with impartial assessment or security evaluation.
It includes an analysis of the IT product and the testing of the product for conformance to a set of security requirements.
Red Hat is also currently in the partnership process with HP for EAL 4 certification. This level of security represents the highest level of certification for an operating platform.
Along with the EAL 4 certification, Red Hat's Cryptography Libraries and Security Platform have been certified under the FIPS 140-2 evaluation criteria.
Red Hat has received certification with NSS for key algorithms AES, Triple DES and SHS. This certification ensures the Red Hat Certificate System now meets the requirements set for strong cryptography controls in the US government, the company said.