350 Ellis Street
Mountain View, California
Symantec™ Control Compliance Suite v10.5.1 was the subject of a Common Criteria evaluation performed by the Common Criteria Evaluation Facility at EWA-Canada, located in Ottawa, Ontario, Canada. The evaluation was completed on 16 September 2011.
The evaluation of Symantec™ CCS v10.5.1 determined that this Information Technology (IT) product can be trusted, to an Evaluation Assurance Level (EAL) 3 augmented, to conform to the requirements of the associated security target. The augmentation consisted of the following: ALC_FLR.2 – Flaw Reporting Procedures.
Symantec™ CCS v10.5.1 is a software only IT risk and compliance management solution which allows administrators to link administrator defined policies to specific technical and procedural standards, and which automates the tracking of compliance to those policies across the organization. It provides an agent-less or agent-based capability to audit and scan managed devices and identify problems with system configurations and internal controls.
The scope of this evaluation is defined by the security target, which identifies assumptions made during the evaluation, the intended environment for Symantec™ CCS v10.5.1, the IT security requirements to be met, and the level of confidence (evaluation assurance level) to which it is asserted that the Symantec™ CCS v10.5.1 satisfies its IT security requirements.
Consumers are advised carefully review the certification report to gain an understanding of the security functionality, the evaluated configuration, and the intended operating environment for Symantec™ CCS v10.5.1.