Aruba Gets Common Criteria Certification


Hewlett Packard’s Aruba has been the first cybersecurity company to be awarded Common Criteria certification for a network access control (NAC) solution, under both the Network Device collaborative Protection Profile1 and the Extended Package for Authentication Servers2 modules. ClearPass is also the industry’s first NAC solution to receive certification as an authentication server.

Aruba ClearPass was validated through an independent testing laboratory to ensure it adheres to strict government and defense cybersecurity standards.

ClearPass is an identity management and authentication solution. The tool allows government agencies and private organizations to rely on Common Criteria certification as assurance for providing a global, independent, and certifiable cybersecurity baseline.

As an important complement to NDcPP, Aruba ClearPass received Common Criteria certification for the Extended Package for Authentication Servers module. This extended package assesses functionality specific to RADIUS authentication servers, and qualifies ClearPass to appear on the approved product list for the US National Security Agency’s Commercial Solutions for Classified (CSfC) program. US government customers deploying classified communications systems under the CSfC program may use ClearPass to securely authenticate user and device access over wired, Wi-Fi, and remote connections.

Aruba’s certification was granted by the NIAP, which is a United States government initiative that oversees a national program to evaluate commercial off-the-shelf (COTS) information technology (IT) products for conformance to the internationally recognized Common Criteria security testing standards. Tests were performed by Gossamer Security Solutions, one of the world’s most renowned security testing laboratories.

Common Criteria is a global standard to which security products are evaluated on behalf of both government agencies and private sector organizations who are focused on dealing with an increasingly complex and dangerous threat environment. Certifications are universally recognized by 28 nations and products certified in one country are recognized by all other countries. NIAP also works with NATO and international standards bodies (ISO) to share Common Criteria evaluation experiences and increase efficiencies by avoiding the duplication of efforts.