Safelayer develops solutions whose security excellence is evaluated by independent bodies. All Safelayer products obtain, among others, CC certification, the most representative of the sector.
Common Criteria (CC) is an international standard (ISO/IEC 15408) that defines criteria for assessing the security of IT products and/or systems.The CC certificate is the benchmark adopted by the ICT sector to provide the necessary and sufficient guarantees for quality and reliability. Safelayer products have the following levels of assurance:
- KeyOne PKI 4.0 (CA/XRA/VA) and KeyOne ePassport (CSCA/CVCA/DV) 4.0 with a CC EAL4+ (ALC_FLR.2) guarantee level in compliance with the security level 3 CIMC Protection Profile ("Certificate Issuing and Management Component", NIST). For more information: https://www.commoncriteriaportal.org/products/
- KeyOne 3.0 with a CC EAL4+ (ALC_FLR.2) guarantee level in compliance with the security level 3 CIMC Protection Profile ("Certificate Issuing and Management Component", NIST). For more information: https://www.commoncriteriaportal.org/products/
- TrustedX 3.0 with a CC EAL4+ (ALC_FLR.2) guarantee level in compliance with the USA Government "US Government Family of Protection Profiles. Public Key-Enabled Applications For Basic Robustness Environments", USMC (United States Marine Corps). For more information: https://www.commoncriteriaportal.org/products/
ISO 9001 regulations are international rules and guidelines for managing quality systems. Since their initial publication in 1987, they have achieved global recognition as the basis for establishing quality management systems.
Safelayer certifies its Quality Management System using the ISO standards. Safelayer currently has the ISO 9001:2008 certification stamp of quality for the design and development of security software and consulting and training services for integrating identity and trust management solutions.
The UNE 166002 "R&D&I Management: R&D&I Management System Requirements" standard sets out guidelines for effectively organizing and managing research, development and innovation activities based on tools such as the early identification of opportunities for technological evolution or the creativity maximisation applied to all company activities. The result is a highly effective and efficient R&D&I management system that guarantees excellence in the companies certified with this standard.
Safelayer is member of ETSI (European Telecommunications Standards Institute), the recognized european standards body – European Standards Organization (ESO) – dealing with telecommunications, broadcasting and other electronic communications networks and services. ETSI is supporting European regulations and legislation through the creation of Harmonised European Standards. Only standards developed by the ESOs CEN (Committee European Normalization), CENELEC (Comité Européen de Normalisation Electrotechnique) and ETSI are recognized as European Standards (EN - European Standards).
In addition, Safelayer is member of the ESI (Electronic Signatures and Infrastructures) Technical Committee, in which we are collaborating in different working groups.
From an electronic signature perspective, the bodies working on the standards for the eIDAS framework are CEN and ETSI organizations. Safelayer is involved in working groups of both CEN and ETSI organizations.
Safelayer has taken part since 2007 in the XAdES Remote Plugtest interoperability tests organized by the European Telecommunications Standards Institute (ETSI). The company also participated in the precursor to these tests run by the Next Generation Electronic Commerce Promotion Council of Japan (ECOM).
The ETSI Remote Plugtests is an interoperability event open to developers of software products or services that implement the XAdES (XML Advanced Electronic Signature), PAdES (PDF Advanced Electronic Signature), CAdES (CMS Advanced Electronic Signature) and ASiC (Associated Signature Container) standards for assuring the quality of their solutions and implementations.