PowerBroker Password Safe Achieves Common Criteria Certification

BeyondTrust is thrilled to announce that PowerBroker Password Safe, our all-in-one solution for the management of privileged sessions and privileged accounts of all types, has achieved Common Criteria certification. With this, all core PowerBroker PAM Platform solutions are Common Criteria certified.

Common Criteria Is an Important Security Standard

Common Criteria is an internationally-recognized computer security standard (also ISO 15408) that includes stringent review and testing. It is the foundation for the widest-available mutual international recognition of secure IT products, and achievement of this certification helps to assure that government agencies and global enterprises alike can confidently procure and use solutions without the added cost and complexity of additional product testing.

Why Certification Matters

Many governments, including the US Federal Government and Department of Defense, require that products be Common Criteria certified for use. In SP800-53, NIST notes, “Organizations can obtain significant benefit from the acquisition and employment of information technology products evaluated against the requirements of ISO/IEC 15408. The use of such products can provide evidence that certain security controls are implemented correctly, operating as intended, and producing the desired effect in satisfying stated security requirements.”

Benefits of Using Common Criteria

Organizations of all types can benefit from utilizing Common Criteria in their product evaluations.

• Faster time to value. By relying on the certification evidence as one element of a selection process, organizations can reduce the time and associated complexities required for testing, helping them speed the selection and deployment processes.
• Less cost. Since certified solutions have been thoroughly evaluated by an independent third-party laboratory, organizations can eliminate the cost associated with additional third-party evaluations.
• Less risk. Thorough review, testing, and evaluation ensure that organizations have a complete picture of the impact of a solution on their environment, and can properly plan for infrastructure needs in advance.

Password Safe Certification Details

The Leidos Common Criteria Testing Laboratory conducted the testing of PowerBroker Password Safe and granted the Common Criteria certificate (# 383-4-412) that became effective on June 29, 2018. PowerBroker Password Safe achieved certification using the Standard Protection Profile for Enterprise Security Management Identity and Credential Management, Version 2.1, 24 October 2013, and the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 4.

Password Safe Joins the Rest of the Powerbroker Platform in Common Criteria Certification

As announced previously, BeyondTrust has earned Common Criteria certification for:

• PowerBroker for Unix & Linux
• BeyondInsight
• Retina
• PowerBroker for Windows
• PowerBroker Auditing & Security Suite
• UVM 50 appliance

As more organizations realize that securing their privileged access means both securing privileged accounts and privileged users, having complete Common Criteria certification across both solutions means that customers can put their trust in a single vendor to deliver this integrated capability. Securing your organization’s information technology is challenging enough. Take advantage of trusted standards to remove complexity from product selection. To explore how these Common Criteria Certified solutions can be trusted to securely mitigate risk for your organization, contact us.