Software provider VMware commissioned TÜViT to test the IT security level of two VMware products. VMware vSphere and VMware NSX will be evaluated according to the international IT security standard Common Critieria and then certified by the German Federal Office for Information Security (BSI), the responsible certification authority. The certificates will allow VMware to tap new, international customer segments, especially in the public sector.
TÜV Informationstechnik will evaluate VMware vSphere and VMware NSX to determine whether the products meet the standards required by Common Criteria and if the security functions adequately protect against possible security threats. The tests are based on the Evaluation Assurance Level EAL 4+ for VMware vSphere and VMware NSX and cover a software analysis of the source code as well as an evaluation of all architectural and design documents for IT security.
"We very much welcome the fact that many tenders, especially from public authorities, now call for proof of high IT security levels through Common Criteria certificates," says Dirk Kretzschmar, Managing Director of TÜV Informationstechnik . "We are delighted to have won VMware as a new customer and that they have opted for such an intensive evaluation and certification."
VMware vSphere is a hypervisor that companies use to create and run virtual guest systems. VMware NSX is a network virtualization and security solution for the software-defined data center and multi-cloud environments. The solution virtual cloud networking environment that delivers distributed firewalling, and virtualized switches, routers and ports. Common Criteria is an internationally recognized standard used to test and evaluate the security of IT products. In Germany, the Federal Office for Information Security (BSI) acts as the certification body for Common Criteria.
TÜViT is the brand of the IT division of the TÜV NORD GROUP and is one of six global business units. The IT business unit includes the companies TÜV Informationstechnik GmbH and TÜV NORD IT Secure Communications GmbH & Co. KG, a Berlin-based consulting company founded in January 2018.TÜV Informationstechnik focuses solely on security in information technology and, as an independent testing service provider for IT security, is an international leader.
Its portfolio includes cyber security, software and hardware evaluation, IoT/Industry 4.0, data protection, ISMS, Smart Energy, mobile security, automotive security, eID and identity verification services as well as the testing and certification of data centers for physical security and high availability.
TÜV Informationstechnik, founded in 1995 and headquartered in Essen, Germany, is a member of the TÜV NORD GROUP, one of the world's largest technology service providers with over 10,000 employees and business activities in 70 countries worldwide.