Red Hat Enterprise Linux 7.1 Achieves Common Criteria Security Certification 

RALEIGH, N.C., Oct. 26 -- Red Hat, Inc. (NYSE: RHT), the world's leading provider of open source solutions, today announced that Red Hat Enterprise Linux 7.1 has been awarded the Common Criteria Certification at Evaluation Assurance Level (EAL) 4+ for an unmodified commercial operating system under the Operating System Protection Profile (OSPP). This marks the first time that an operating system has been Common Criteria-certified with Linux Container Framework Support, further demonstrating Red Hat Enterprise Linux 7’s ability to provide hardened and more secure IT innovations like Linux containers.

The Common Criteria is an internationally recognized set of standards used by the federal government and other organizations to assess the security and assurance of technology products. In the Common Criteria scheme, EAL represents the depth and rigor of the evaluation, giving consumers the confidence that products specified at a specific level meet the package of security assurance requirements associated with that level. This certification provides government agencies, financial institutions, and customers in other security-sensitive environments the assurance that Red Hat Enterprise Linux 7.1 meets clear, specific security standards used by the federal government.

In addition to Linux Container Framework Support, Red Hat Enterprise Linux 7 has also been certified to include functionality for:

• Advanced Management (MLS mode only)
• Labeled Security (MLS mode only)
• Runtime protection against programming errors, encompassing address space layout randomization (ASLR), stack smashing protector strong and others
• Packet Filter

This combined functionality makes Red Hat Enterprise Linux 7 the most secure platform that Red Hat has ever certified via Common Criteria.

Certified configurations from Red Hat Partners include:

Dell

• Dell PowerEdge R530, R630, R730, R730xd, R920, and R930
• Dell PowerEdge T430 and T630
• Dell PowerEdge M630 and M830
• Dell PowerEdge FC430, FC630 and FC830
• Dell PowerEdge C6320
• Dell PowerEdge Precision R791

Hewlett Packard Enterprise (HPE)

• HPE based on x86 64bit Intel Xeon processors:
  • HPE ProLiant ML series G7, Gen8, Gen9 product line
  • HPE ProLiant DL series G7, Gen8, Gen9 product line
  • HPE ProLiant BL series G7, Gen8, Gen9 product line
  • HPE ProLiant SL series G7, Gen8, Gen9 product line
• HPE based on AMD64 processors:
  • HPE ProLiant ML series G7, Gen8 product line
  • HPE ProLiant DL series G7, Gen8 product line

IBM

• IBM System p based on Power 8 processors providing execution environments with PowerVM:
  • Big Endian with PowerVM: Tuleta BE model number - Power 835 model 8286-41A
  • Little Endian with Red Hat Virtualization for Power 3.6: Power 835 model 8284-22A
• IBM System z based on z/Architecture processors:
  • zEnterprise EC12 (zEC12)
  • zEnterprise BC12 (zBC12)
  • zEnterprise 196 (z196)
  • zEnterprise 114 (z114)

Red Hat Enterprise Linux 7.1 was certified by BSI, Germany's Federal Office for Information Security. To facilitate this certification, Red Hat worked with atsec information security corporation, a U.S. government and BSI accredited laboratory, which tested and validated the security, performance and reliability of the solution against the Common Criteria Standard for Information Security Evaluation (ISO/IEC 15408) at EAL4+.

Source: Red Hat