Learning Center

Learning Center:

SKPP: the Gold Standard for Security is Delivered

"...vulnerabilities are endemic because we have whole networks and infrastructures built on software that's insecure. Any given day, some new vulnerability pops up." -- Michael Vatis, a former director of the FBI's National Infrastructure Protection Center.

Much of the world's critical infrastructure, financial networks, medical information systems, telecommunications gear, and portable mobile devices are open to compromise by determined individuals, corporations, organized crime, and nation states. That is, until now.

The INTEGRITY Software System Has Been Certified to EAL6+ High Robustness

Common Criteria Separation Kernel Protection Profile (SKPP) — What is it?
SKPP is the security standard created by the Open Group and published by the National Security Agency to specify security requirements for "high robustness" operating systems. High robustness operating systems are suitable for use in computer systems that manage and protect high value resources in the face of attacks by resourceful adversaries.

According to Department of Defense guidance, high robustness refers to "security services and mechanisms that provide the most stringent protection and rigorous security countermeasures." The SKPP contains both functional and assurance requirements. Functional requirements refer to the security policies enforced by the operating system. For example, an SKPP-compliant operating system must guarantee that a malicious application cannot harm (corrupt, deny service to, steal information from, etc.) any other application running on the computer. Assurance requirements refer to the evidence that provides high confidence that the product implements its security functional requirements.

The requirements of the SKPP are far more stringent than any other operating system security standard. The resulting assurance, or confidence, that developers, users, and other stakeholders are therefore able to derive from an SKPP evaluation are extremely high and unprecedented in the world of computer security. SKPP requires an extremely rigorous development process, formal methods — which provide mathematical proof of the security - and penetration testing by the NSA's security experts who have complete access to the source code.

With the recent certification of the INTEGRITY software system to EAL6+ High Robustness, the Common Criteria SKPP standard, there now exists, for the first time in history, a software system that can be trusted to protect corporate intellectual property, financial records, private customer information, national secrets, and control systems for critical infrastructure.

INTEGRITY Global Security offers the following solution set based on the INTEGRITY software system. These solutions will enable governments and commercial enterprises to protect their high value data and applications quickly and cost-effectively.

  • Secure VPN
  • Secure Web Browsing
  • Secure Web Servers
  • Secure Data Center
  • Secure Call Center
  • Secure Networking
  • Secure Network Consolidation
  • Secure Device Management
  • Secure Financial Transactions
  • Secure PDA

For more information, please call 805-882-2500 or email info@integrityglobalsecurity.com.

© INTEGRITY Global Security    |    Site Map    |    Contact Us