In the business area Evaluation Centre you find the services that Combitech provides within the area of IT security evaluations. The main areas of expertise in Evaluation Centre are Common Criteria evaluations, system- and product evaluations. Evaluation Centre is a accredited IT Security Evaluation Facility (ITSEF) and thus being internationally recognized as an Evaluation Centre for Common Criteria evaluations.

In addition to evaluation competence, Evaluation Centre has the competence and experience to be able to support end-users, suppliers and professional buyers in the different parts of the evaluation process. Evaluation Centre also provides training courses in the areas of Evaluation and Common Criteria.

Evaluation

Evaluation that includes testing, design- and implementation review contributes significantly in reducing the risk of undesired behavior in a product or system. When evaluating a product or system there are rigorous analyses performed to verify that the security functions behaves according to specification. Vulnerability assessment, code reviewing and penetration testing are the main techniques for assurance by verification. Working with standards, such as Common Criteria, presents an acknowledged framework in which expert analysis can take place and a complete investigation of the product/system can be performed.