Update 2018-Oct-03: This post has been updated within new information from NDcPP v2.1.
NIAP has issued Technical Decision TD0321 against the Network Device Collaborative Protection Profile (NDcPPv2.0e) mandating the use of a trusted channel (IPsec, SSH, TLS, DTLS, HTTPS) for NTP (or non-NTP external entity used to set time). This will impact any in-flight and future NDcPP evaluations that are destined for the NIAP PCL.
Read More
In this short tutorial, we demonstrate how to generate the AES response files used in CAVP algorithm testing. The OpenSSL FIPS Object Module 2.0.16 is used for this demonstration.
Imagine having more than 60% of your Common Criteria evaluation completed in less than a week.
With Lightship’s Certification Head Start offering, we can make it happen.
Read More
We are excited to announce that Lightship Security is a fully accredited Common Criteria laboratory. Prepare for warp-speed certifications! Contact us to find out how our experienced team uses Greenlight automation and Lightship’s industry first functional gap assessment methodology to transform your certification experience.
Full press release: Lightship Security completes accreditation as Common Criteria laboratory
Standards Council of Canada: Directory of Accredited Laboratories – Lightship Security
Communications Security Establishment: Common Criteria Evaluation Facilities
At Lightship Security, we are all about certifying at the speed of development. Therefore, we are proud to announce our new mobile certifications laboratory. With over 1200 cubic feet of interior high-tech laboratory goodness, we can handle even your most demanding certification needs. The 10-cylinder, 350 horsepower motor will have us rolling into your neighbourhood before the ink dries on the contract.
Look for Lightship Security Mobile Certifications near you. For more information about this amazing industry-first service, click here.
In a short video tutorial, Lightship Security walks viewers through the basic steps to build the OpenSSL FIPS 140‑2 (2.0.10) object module in accordance with the OpenSSL FIPS 140‑2 Security Policy.
Many vendors seeking to sell hardware or software to the U.S. Government, particularly to defense and intelligence agencies, will find that cyber security product certification is mandated by federal procurement requirements (CNSSP 11) for these environments. We know, because many of our clients come to us for this very reason – fast, efficient, low risk evaluations that ultimately end up on the National Information Assurance Partnership (NIAP) Product Compliant List (PCL).
Our President Jason Lawlor talks with the Ottawa Business Journal to explain what Lightship Security is all about. Interview topics include:
As part of our continued product development efforts supporting assurance modernization, the Lightship team sometimes develop useful experimental tools or proofs of concepts. A while ago we developed a proof of concept to extract raw unconditioned entropy from a live running Linux system using the SystemTap API to produce loadable kernel modules. This was done as an exercise to explore Linux entropy characteristics. The code has been sitting around relatively unused, so we’ve decided to open it up under the GPL. It has been cleaned up a bit with additional informative comments, but this is proof-of-concept code with no warrant of fitness. You can find it on our GitHub account.
Read More
It’s hard to believe that it’s been two years since the launch of Lightship Security. Looking back to our founding, we collectively felt strongly that our vision and mandate would have to be centered on innovation and improvement of assurance outcomes within our industry. We did not want to simply start Lightship and keep doing “more of the same” that we had repeatedly seen in our 10+ years in the product certification industry.
We’re pleased to report that we have stayed true to the mandate. We have leveraged our agility, autonomy and some would say stubborn commitment to build a company and suite of technologies that can truly deliver “certification at the speed of development”. We have been able to accomplish this through key investments into our strategy:
Read More
