FIPS & Common Criteria

FIPS 140-2 Certification and Common Criteria are two widely recognized standards in the field of information security. FIPS 140-2 Certification focuses on cryptographic modules used in securing sensitive information, while Common Criteria provides an internationally recognized framework for evaluating and certifying the security of IT products.

FIPS 140-2 Certification ensures that cryptographic modules meet specific security requirements and are suitable for protecting sensitive data. It defines four levels of security, with Level 1 being the lowest and Level 4 being the highest. This certification is often required for products used in government and regulated industries.

Common Criteria, on the other hand, is an international standard for evaluating the security properties of IT products. It provides a set of rigorous criteria that evaluate the security features and functionalities of a product. Common Criteria certifications are recognized worldwide, allowing products to be accepted in various countries, including the United States, Canada, the United Kingdom, Germany, and France. The objective is to provide a common set of criteria for the security functionality of IT products and systems. It can provide the government agencies and organizations with a reliable standardized way to access and compare the security attributes of different products.

In addition to these standards, there are two types of protection profiles: Country-specific Protection Profiles (PP) and Collaborative Protection Profiles (cPP). Country-specific PPs define specific security requirements mandated by individual countries, but there is no guarantee of mutual recognition among countries. On the other hand, cPPs are developed collaboratively by multiple countries, ensuring a higher level of mutual recognition.

In the industrial-grade SSD (Solid State Drive) application, adherence to FIPS 140-2 Certification and cPP is crucial to ensure the security and integrity of data stored on the SSD. UDinfo's DA series SSD is compliant with both FIPS 140-2 and cPP standards (Certificate No.: 3940), offering users a high level of confidence in the security and reliability of their data storage solution.