Enhancing Cybersecurity Services for North American Customers

DEKRA accredited as Common Criteria Testing Laboratory in the United States

Jul 18, 2023 Digital & Product Solutions / Cyber Security / Certification

The National Information Assurance Partnership (NIAP) and the National Voluntary Laboratory Accreditation Program (NVLAP) have accredited DEKRA as a Common Criteria testing laboratory in the United States. The accreditation has been granted to DEKRA's laboratory located in Sterling, Virginia, and is DEKRA’s second accredited laboratory for Common Criteria certification. DEKRA also has an accredited lab in Spain.

“This accreditation is a significant milestone for DEKRA’s cybersecurity division and demonstrates our commitment to enhancing support for our customers in North America, as well as our global presence,” said Rubén Lirio, Cybersecurity Manager for DEKRA. “It’s a critical element of delivering on DEKRA’s vision to be the partner for a safe, secure, and sustainable world.”
Common Criteria is an international standard for evaluating and certifying information technology products and systems' security features and capabilities, such as operating systems, network devices, smart cards, and software applications. Under the Common Criteria standard, the evaluation process involves rigorous testing and examination of the product's security features, penetration testing, vulnerability analysis, documentation, and development processes. It assesses aspects such as access control, cryptography, audit logging, and secure communication. Common Criteria certification is a market entry requirement in some countries and regions.
“The addition of Common Criteria to our existing certification as a FIPS 140-3 accredited laboratory (lab code 600319-0) allows us to meet our customers’ growing cybersecurity needs in North America,” said Nithya Rachamadugu, Vice President and Lab Director.
DEKRA provides comprehensive cybersecurity solutions to address a wide range of security challenges, enabling customers to test, evaluate, and certify their devices against globally recognized standards, such as FIPS 140-3 (ISO 19790), eIDAS regulation, LINCE, and GSMA-NESAS 3GPP. DEKRA also offers penetration testing and evaluations for private cybersecurity service programs, including Amazon AVS Security, CTIA IoT, and ETSI EN 303 645.
Media Contact:
Sarah Margulies
sarah.margulies@dekra.com