Oracle Identity Management Earns Common Criteria Security Evaluation

Satisfying key purchasing requirements for government agencies, Oracle today announced that Oracle® Access Manager 10g Release 3, Oracle Internet Directory 10g Release 3 and Oracle Virtual Directory 10g Release 3, have achieved Common Criteria (ISO/IEC 15408) Evaluation Assurance Level 4 (EAL4).

Conducted by third parties against a published security target, Common Criteria evaluations provide an independent assessment of the security of a product. Oracle’s EAL4 evaluations benefit from the Common Criteria Recognition Arrangement and are recognized by the agencies of 25 governments worldwide.

Oracle Identity Manager and Oracle Identity Federation, additional offerings within the Oracle Identity Management family of products, are currently going through the Common Criteria Evaluation process at EAL4.

A component of Oracle Fusion Middleware, the Oracle Identity Management product family allows enterprises to manage the end-to-end lifecycle of user identities across all enterprise applications within and beyond the firewall.

"The Common Criteria evaluation is a critical requirement for customers in the public sector,” said Amit Jasuja, vice president, Oracle Identity Management. “The successful completion of these evaluations at EAL4 validates not only the security considerations inherent in the design and deployment characteristics, but also the comprehensive considerations baked into the product life-cycle and development processes associated with Oracle Identity Management. By evaluating the entire Oracle Identity and Access Management Suite, Oracle is continuing to meet our customers’ stringent security requirements.”