Home » References » Quatily and Interoperability

Quality and Interoperability

Safelayer develops solutions whose security excellence is evaluated by independent bodies. All Safelayer products obtain, among others, CC certification, the most representative of the sector.

Common Criteria EAL4+

Common Criteria (CC) is an international standard (ISO/IEC 15408) that defines criteria for assessing the security of IT products and/or systems.The CC certificate is the benchmark adopted by the ICT sector to provide the necessary and sufficient guarantees for quality and reliability. Safelayer products have the following levels of assurance:

KeyOne 3.0 with a CC EAL4+ (ALC_FLR.2) http://www.oc.ccn.cni.es/ProdCert_en.html guarantee level in compliance with the security level 3 CIMC Protection Profile ("Certificate Issuing and Management Component", NIST).

TrustedX 3.0 with a CC-EAL4+ (ALC_FLR.2) http://www.oc.ccn.cni.es/ProdCert_en.html guarantee level in compliance with the USA Government "US Government Family of Protection Profiles. Public Key-Enabled Applications For Basic Robustness Environments", USMC (United States Marine Corps).

KeyOne Certificate Management (CA) and ePassport (CSCA/CVCA/DV) v4.0 is in certification process to achieve the CC EAL4+ (ALC_FLR.2).

ISO 9001

ISO 9001 regulations are international rules and guidelines for managing quality systems. Since their initial publication in 1987, they have achieved global recognition as the basis for establishing quality management systems.

Safelayer certifies its Quality Management System using the ISO standards. Safelayer currently has the ISO 9001:2008 certification stamp of quality for the design and development of security software and consulting and training services for integrating identity and trust management solutions.

www.aenor.es

ETSI CAdES/XAdES/PAdES Plugtest

Safelayer has taken part since 2007 in the XAdES Remote Plugtest interoperability tests organized by the European Telecommunications Standards Institute (ETSI). The company also participated in the precursor to these tests run by the Next Generation Electronic Commerce Promotion Council of Japan (ECOM).

The Plugtest is organized by the European Telecommunications Standards Institute (ETSI) and represents an opportunity for developers of software products and services that implement the XAdES standard to demonstrate the quality of their solutions and implementations. In the 2011 edition, TrustedX's PAdES support was tested.

http://www.etsi.org/Website/OurServices/Plugtests/home.aspx

Safelayer solutions provide the security mechanisms and trust management for identification and authorisation, digital signature and data encryption to the highest security requirements and legal compliance.

Common Criteria (ISO/IEC 15408) with level EAL4+, digital certificates management for electronic signature (CWA 14167-1), community framework for electronic signature (Directive 1999/93/EC), regulations on electronic invoice (e-Invoice).