The offerings that gained Common Criteria certification:
Some earlier versions of those products had already attained CC certification, but without the service pack additions. The announcement hasn’t garnered much media attention, but it should boost Microsoft’s security reputation, which continues to suffer hits over vulnerabilities in Internet Explorer.
That’s because CC certification is independent of Microsoft. CC is an international consortium of organizations that’s established a set of common security standards it applies to products, which are submitted by companies for testing. If the products meet those standards, it’s awarded the CC certification. The higher the certification level, the better it meets agreed-upon security guidelines. And all products, whether they be from Microsoft, Oracle, CA and so on, get tested the same way for the same level. The Microsoft products attained Evaluation Assurance Level (EAL) 4, the top level for operating systems.
Microsoft compares favorably with other competing OS vendors. For example, Sun Solaris 9 achieved EAL 4; Mac OS X achieved EAL 3; Red Hat Enterprise Linux 3 achieved EAL 2; and SuSE Linux Enterprise Server Version 9, SP2 achieved EAL 3.
About the Author
Keith Ward is the editor in chief of Virtualization & Cloud Review. Follow him on Twitter @VirtReviewKeith.
Microsoft acknowledged an "issue impacting the Azure Portal" in a June 9 Twitter post.
Microsoft on Thursday announced three "customer commitments" toward organizations that may use its budding artificial intelligence (AI) technologies.
Microsoft announced on Thursday that it'll deprecate the "classic" Exchange Admin Center management portal on June 20, 2023.
Microsoft described a few of additions to its Microsoft Entra identity and access management products this week.
Microsoft on Wednesday announced that Azure Government users now have access to the AI-based Azure OpenAI Service.
More Tech Library