Trustwave SpiderLabs Uncovers Unique Cybersecurity Risks in Today's Tech Landscape. Learn More

Trustwave SpiderLabs Uncovers Unique Cybersecurity Risks in Today's Tech Landscape. Learn More

Services
Capture
Managed Detection & Response

Eliminate active threats with 24/7 threat detection, investigation, and response.

twi-managed-portal-color
Co-Managed SOC (SIEM)

Maximize your SIEM investment, stop alert fatigue, and enhance your team with hybrid security operations support.

twi-briefcase-color-svg
Advisory & Diagnostics

Advance your cybersecurity program and get expert guidance where you need it most.

tw-laptop-data
Penetration Testing

Test your physical locations and IT infrastructure to shore up weaknesses before exploitation.

twi-database-color-svg
Database Security

Prevent unauthorized access and exceed compliance requirements.

twi-email-color-svg
Email Security

Stop email threats others miss and secure your organization against the #1 ransomware attack vector.

tw-officer
Digital Forensics & Incident Response

Prepare for the inevitable with 24/7 global breach response in-region and available on-site.

tw-network
Firewall & Technology Management

Mitigate risk of a cyberattack with 24/7 incident and health monitoring and the latest threat intelligence.

Solutions
BY TOPIC
Microsoft Exchange Server Attacks
Stay protected against emerging threats
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
About Us
Awards and Accolades
Trustwave SpiderLabs Team
Trustwave Fusion Security Operations Platform
Trustwave Security Colony
Partners
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats
News Releases

Trustwave Achieves Common Criteria Validation

CHICAGO (February 10, 2010) - Trustwave, one of the leading providers of information security and compliance solutions, has achieved Common Criteria validation for its Network Access Control (NAC) technology. Specifically, Trustwave has been validated for Common Criteria Evaluation Assurance Level (EAL) 2 Augmented with Flaw Remediation (ALC FLR. 1) or EAL 2+. This accreditation demonstrates Trustwave's commitment to meeting the needs of federal, state and municipal government entities and enterprises around the world by delivering a solution that meets stringent security standards.

Common Criteria is an internationally approved set of security standards that provides a clear and reliable evaluation of the security capabilities of Information Technology (IT) products. This framework provides confirmation that the development, evaluation and validation of an IT product has met specific security standards in accordance with an independent assessment accepted by the most security-conscious customers, such as federal governments. The international scope of Common Criteria, currently adopted by 26 nations, allows users from other countries to purchase IT products with the same level of confidence, due to the recognition of the certification across the complying nations.

Network Access Control technology helps prevent unknown or unauthorized endpoints - such as a laptop from a third party vendor - from freely connecting to a proprietary network. These types of endpoints are primary vectors for the introduction of viruses and other malware onto corporate networks. Trustwave NAC validates an endpoint's security posture before allowing it to connect, and also governs each endpoint's behavior on the network once access is granted.

The Target of Evaluation (TOE) for EAL 2+ certification was for Trustwave NAC version 3.4.0. Specifically, Trustwave NAC was evaluated throughout all stages to show the solution enables network administrators to control which devices gain admission to the network and what network services they may invoke. Using controlled sensors to initially monitor all network traffic, Trustwave NAC detects any policy violations configured by administrators. Next, as devices attempt to gain access to the network, Trustwave NAC can run policy checks to determine if the identified device complies with the security policies in the network segment that it is attempting to join. After admission, Trustwave NAC monitors all network traffic, detects exceptions to the administrator-configured behavioral policy, and re-evaluates the network access permitted to the managed devices as new information about them is learned.

"Due to Trustwave's preparedness, mature process and understanding of the Common Criteria, Trustwave was able to complete the EAL2+ evaluation in a very efficient seven months," said Jason Lawlor, General Manager of the DOMUS IT Security Laboratory, the lab that performed the testing. "Trustwave's NAC product has now been confirmed to provide the security features for which it was evaluated and can now help provide government and federal agencies around the world with enhanced perimeter security."

"As a leading security organization it's important that we certify our technology with the most robust standards," says Robert J. McCullen, chairman and CEO of Trustwave. "Trustwave NAC has been tested to deploy in a secure fashion and can now be implemented by government bodies throughout the world."

About Trustwave

Trustwave is a leading provider of on-demand and subscription-based information security and payment card industry compliance management solutions to businesses and government entities throughout the world. For organizations faced with today's challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its flagship TrustKeeper® compliance management software and other proprietary security solutions including SIEM , WAF , EV SSL certificates  and secure digital certificates . Trustwave has helped hundreds of thousands of organizations-ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers-manage compliance and secure their network infrastructures, data communications and critical information assets. Trustwave is headquartered in Chicago with offices throughout North America, South America, Europe, Africa, Asia and Australia. For more information, visit https://www.trustwave.com/en-us/.

Latest News Releases

Trustwave Honored with Best Company Outlook Award

Chicago – 21, 2024 – Trustwave, a global cybersecurity and managed security services leader, today announced it was awarded Comparably’s Best Company Outlook Award. Trustwave ranked thirteenth on...

Read More

Trustwave SpiderLabs Uncovers Unique Cybersecurity Risks in Today's Tech Landscape

Chicago – March 20 – Trustwave, a leading cybersecurity and managed security services provider, today released an extensive report focusing on the distinct cybersecurity challenges confronting the...

Read More

Trustwave Government Solutions Named a Major Player in New IDC MarketScape

CHICAGO – March 18, 2024 – Trustwave Government Solutions (TGS), a leading Federally-focused cybersecurity provider and the wholly-owned subsidiary of Trustwave, was named as a Major Player in the...

Read More