Commercial Product Assurance
- Commercial Product Assurance
-
Commercial Product Assurance (abbreviated as CPA) is (as of September 2010) an emergent UK Government Standard for computer security.
It is intended to supplant other approaches such as Common Criteria (CC) and CCT Mark for UK government use.
Organisation
CPA is being developed under the auspices of the UK Government's CESG[1] as the UK National Technical Authority (NTA) for Information Security.
Comparisons
In comparison to other schemes:
- Unlike Common Criteria, there is no Mutual Recognition Agreement (MRA) for CPA, which means that products tested in the UK will not normally be accepted in other markets
- Unlike the CCT Mark, the coverage of CPA is limited to Information Security products, and therefore excludes services. The target audience for CPA also appears to be focused on Central Government ("I'm protecting Government data")[2] rather than including the Wider Public Sector (WPS) and Critical National Infrastructure (CNI) segments that were target customers for CCT Mark
References
- ^ CESG Home Page
- ^ CESG CPA Home Page
Wikimedia Foundation.
2010.
Look at other dictionaries:
Product (business) — In general, the product is defined as a thing produced by labor or effort [1] or the result of an act or a process ,[2] and stems from the verb produce, from the Latin prōdūce(re) (to) lead or bring forth . Since 1575, the word product has… … Wikipedia
Evaluation Assurance Level — The Evaluation Assurance Level (EAL1 through EAL7) of an IT product or system is a numerical grade assigned following the completion of a Common Criteria security evaluation, an international standard in effect since 1999. The increasing… … Wikipedia
National Information Assurance Partnership (NIAP) — The National Information Assurance Partnership (NIAP) is a United States government initiative to meet the security testing needs of both information technology consumers and producers which is operated by the National Security Agency (NSA) and… … Wikipedia
Software Security Assurance — Software is itself a resource and thus must be afforded appropriate security. Software also contains and controls data and other resources. Therefore, it must be designed and implemented to protect those resources. Software Security Assurance is… … Wikipedia
National Information Assurance Partnership — The National Information Assurance Partnership (NIAP) is a United States government initiative to meet the security testing needs of both information technology consumers and producers that is operated by the National Security Agency (NSA), and… … Wikipedia
Uniform Commercial Code — The Uniform Commercial Code (UCC or the Code) is one of a number of uniform acts that have been promulgated in conjunction with efforts to harmonize the law of sales and other commercial transactions in all 50 states within the United States of… … Wikipedia
Reliability engineering — is an engineering field, that deals with the study of reliability: the ability of a system or component to perform its required functions under stated conditions for a specified period of time. [ Definition by IEEE] It is often reported in terms… … Wikipedia
Organic certification — Mixed organic bean sprouts Organic certification is a certification process for producers of organic food and other organic agricultural products. In general, any business directly involved in food production can be certified, including seed… … Wikipedia
Certification mark — Canadian certification label on a bag of rockwool. A certification mark on a commercial product indicates five things: The existence of a legal follow up or product certification agreement between the manufacturer of a product and an organization … Wikipedia
Secure Computing — Infobox Company company name = Secure Computing Corporation company company type = Public (NASDAQ: [http://quotes.nasdaq.com/asp/SummaryQuote.asp?symbol=SCUR selected=SCUR SCUR] ) company slogan = Securing connections between people, applications … Wikipedia
