Corsec Security, Inc.

🔐 Your May roundup of key updates from NIST, DISA, & NIAP— including updates relevant to FIPS 140, Common Criteria, & DoD STIGs. https://lnkd.in/ePfeTnWP #CommonCriteria #STIG #FIPS #NIST #CAVP #CMVP #NIAP #DISA #SecurityCertifications

Throughout our Deconstructing Common Criteria (CC) Myths series, we tackled some of the most common misconceptions surrounding the CC certification process.   For organizations ready to move beyond the confusion and take actionable steps toward certification, Corsec offers a structured service designed to simplify the journey. Explore FAQs, review deliverables, and download an overview here: 👉 https://lnkd.in/eCEVkcUH

Over the past 28+ years, we’ve been fortunate to work alongside some incredible team members here at Corsec. While some have moved on to new adventures, it’s always a pleasure to reconnect and come together again at events like International Cryptographic Module Conference (ICMC). Great seeing everyone again: Ian Hall, Manoj Maskara, Matt Keller, Tricia Wolff, Mark Kasulaitis, Kathleen Moyer, Shashi Karanam, Matthew Appler, Lisa Rabe, Darryl Johnson #ICMC #InfoSec #Certifications #ProfessionalCommunity

Common Criteria certification is often surrounded by assumptions that can lead organizations to delay, avoid, or misunderstand the evaluation process. In Myth #5 of our “Deconstructing Common Criteria” series, we take a closer look at one of the industry’s most common misconceptions and the reality behind it. Read the full blog: https://lnkd.in/dgSv_KZg

🔐 Your April roundup of key updates from NIST, DISA, & NIAP— including updates relevant to FIPS 140, Common Criteria, & DoD STIGs. 🔗 https://lnkd.in/ewmZBUcD #CommonCriteria #STIG #FIPS #NIST #CAVP #CMVP #NIAP #DISA #SecurityCertifications

Achieving Common Criteria certification is a major milestone but maintaining active listing status is what sustains market access. In Myth #4 of our Deconstructing Common Criteria: 5 Myths and Realities series, we explore a common misconception: that previously certified products retain the same market eligibility even after they are no longer actively listed. The reality is that listing status plays a direct role in procurement, customer confidence, and competitive positioning. Read the full breakdown: https://lnkd.in/eQqeJb3Y #CommonCriteria #CybersecurityCompliance #ProductSecurity #Certification #RiskManagement

Does your product need to align perfectly to a Protection Profile to pursue Common Criteria evaluation? Not necessarily. In Myth #3, we unpack how alternative evaluation paths and tailored approaches can still support certification readiness—even when alignment isn’t obvious. Explore the full breakdown: https://lnkd.in/e2S9Dy4C

Cost is one of the most common concerns when organizations consider Common Criteria certification—and one of the most misunderstood. Myth 2: “Common Criteria certification is too expensive to justify.” In this installment of our Deconstructing Common Criteria: 5 Myths and Realities series, we explore what really drives certification cost—from technical scope to documentation readiness—and how early planning helps teams maintain predictable timelines. Read the full blog to learn how structured preparation supports both cost control and long-term success. https://lnkd.in/e2HPdjPq #CommonCriteria #Cybersecurity #ProductDevelopment #Compliance #RiskManagement #SecurityAssurance #GovTech

Deconstructing Common Criteria: Myth 1 Many organizations assume that selling to government customers or meeting strong internal security standards, means Common Criteria certification isn’t necessary. In reality, certification provides internationally recognized proof that your product meets mandated security requirements. Without it, market access can quickly change. Our new blog series, Deconstructing Common Criteria: 5 Myths and Realities, examines the most persistent misconceptions shaping certification strategy across product, engineering, and go-to-market teams. Start with Myth 1 and see how assumptions about readiness can impact long-term success. 🔗 Read the first post: https://lnkd.in/eSSAS2dC #CommonCriteria #Cybersecurity #ProductSecurity #Compliance #GovTech #CyberCertification

🎉 Congratulations to OPSWAT on achieving FIPS 140-3 validation 🎉 We are pleased to announce that OPSWAT, Inc. has successfully completed FIPS 140-3 validation of the OPSWAT Cryptographic Module, in partnership with Corsec. This validation reflects a meaningful milestone for organizations operating in federal and highly regulated environments, where independently validated cryptography is a foundational security requirement. It further underscores OPSWAT’s commitment to meeting rigorous risk, compliance, and assurance expectations. 👉 Read the full announcement: https://lnkd.in/eUU6cmXt #FIPS1403 #FIPS #Cryptography #FederalSecurity #Compliance #OPSWAT #Corsec