ⓘ National Information Assurance Partnership


ⓘ National Information Assurance Partnership

The National Information Assurance Partnership is a United States government initiative to meet the security testing needs of both information technology consumers and producers that is operated by the National Security Agency, and was originally a joint effort between NSA and the National Institute of Standards and Technology.


1. Purpose

The long-term goal of NIAP is to help increase the level of trust consumers have in their information systems and networks through the use of cost-effective security testing, evaluation, and validation programs. In meeting this goal, NIAP seeks to:

  • Promote the development and use of evaluated IT products and systems
  • Common Criteria
  • Champion the development and use of national and international standards for IT security
  • Facilitate the development and growth of a commercial security testing industry within the U.S.
  • Foster research and development in IT security requirements definition, test methods, tools, techniques, and assurance metrics
  • Support a framework for international recognition and acceptance of IT security testing and evaluation results

2. Services

  • Common Criteria Evaluation and Validation Scheme CCEVS
  • Consistency Instruction Manuals
  • Product / System Configuration Guidance
  • Product and Protection Profile Evaluation

3. NIAP Validation Body

The principal objective of the NIAP Validation Body is to ensure the provision of competent IT security evaluation and validation services for both government and industry. The Validation Body has the ultimate responsibility for the operation of the CCEVS in accordance with its policies and procedures, and where appropriate: interpret and amend those policies and procedures. The NSA is responsible for providing sufficient resources to the Validation Body so that it may carry out its responsibilities.

The Validation Body is led by a Director and Deputy Director selected by NSA management. The Director of the Validation Body reports to the NIAP Director for administrative and budgetary matters and to NSA certificate-issuing authorities for CCEVS related operational matters. In general, the Director and Deputy Director serve a two-year term of service. This term of service may be extended at the discretion of NSA management. There are also a significant number of technical and administrative support personnel required to provide a full range of validation services for the sponsors of evaluations and the Common Criteria Testing Laboratories CCTL. These personnel include validators, technical experts in various technology cells, and senior members of the technical staff and the IT security community on the oversight board.

The Validation Body ensures that appropriate mechanisms are in place to protect the interests of all parties within the CCEVS participating in the process of IT security evaluation. Any dispute brought forth by a participating party, concerning the operation of the CCEVS or any of its associated activities shall be referred to the Validation Body for resolution. In disputes involving the Validation Body, NSA management will attempt to resolve the dispute through procedures agreed upon by the two organizations.

  • public private partnership with the Open ID Foundation OIDF and the Information Card Foundation ICF in order to craft a workable identity information framework
  • The State Partnership Program SPP is a joint program of the United States Department of Defense DoD and the individual states, territories, and District
  • Enterprise Linux Version 5 running on IBM Hardware National Information Assurance Partnership Common Criteria Evaluation and Validation Scheme, United
  • industrial production, collaboration is then as a specialist in quality assurance and reliability. The experimental research centers routinely use the statisticians
  • resolved by way of Capita providing Voluntary Assurances as to the way in which it would make interface information available the OFT IT expert supported Capita s
  • Research Centre. Information Technology Centre. Mechanical Design Technology Centre. Industrial Chemistry Centre. Quality Assurance Department. There
  • provides bookings and information service for visitors to Scotland. From 2001 this website was operated as a public - private partnership venture, though this
  • Worldwide Assurance for Employees of Public Agencies, widely known by its abbreviated name WAEPA, is a United States nonprofit 501 c 9 VEBA association

Users also searched:

common criteria, niap samsung, windows 10 niap,