Canon Inc., headquartered in Tokyo, Japan, is a leader in the fields of professional and consumer imaging equipment and information systems. Originally established in 1937 as a camera manufacturer, Canon's extensive range of products now includes cameras, video equipment, multifunction office systems, inkjet and laser beam printers, medical equipment and semiconductor-manufacturing equipment. Many of these products have a close link with information security, and Canon intends to continue equipping its products with necessary security functions. Amidst the global advance of IT, Canon pays close attention to customer needs and proposes solutions that enable customers to use increasingly sophisticated and complex information networks conveniently and safely.
SHARP has been providing Common Criteria certified devices that lead the industry in security certification, in order to prevent remaining electronic data in digital multifunction devices from leaking confidential information such as private information by being attacked from outside.
SHARP introduces its security activities for digital multifunction devices by presenting AR-266FP with Data Security Kit AR-FR12, which got the Common Criteria EAL3+ certification in March 2005.
The vision of Hitachi is to create richer lives and a better society by providing products, systems, and services with a new level of value and potential based on the latest advances in technology, especially knowledge and information technology. We provide "New Era Lifeline Support Solutions," further enhancing and fusing information systems and social infrastructure systems, and "Global Products Incorporating Advanced Technology," focused on competitive hardware and software, fusing the advanced technologies and knowledge.
Since its founding in 1910, Hitachi has acted from a corporate philosophy of contributing to society through technology. In the intervening years, the world and society have changed greatly, but we have never lost our pioneering spirit, based on the principles of harmony and sincerity.
CyberGuard Corporation (NASDAQ: CGFW) delivers a suite of integrated information security solutions to provide Global 2000 enterprises and government organizations with the confidence that their critical information assets are protected. Based on the company's Total Stream Protection framework and managed via its Global Command Center, CyberGuard's products go beyond network-level security to provide protection against the most dangerous application-layer vulnerabilities and avoid potential damage, securing the entire data stream. With a growing and satisfied number of brand-name customers, CyberGuard has deployed more than 250,000 products across the globe. Headquartered near Boca Raton, Fl., the company has offices and training centers around the world. For more information visit www.CyberGuard.com.
Symantec Japan, Inc.
Symantec is the world leader, with innovative technology solutions and services, Symantec helps individuals and enterprises protect and manage their digital assets. Symantec provides a wide range of solutions including enterprise and consumer security, data management, application and infrastructure management, security management, storage and service management, and response and managed security services.
Fujitsu is a leading provider of customer-focused information technology and communications solutions for the global marketplace. Pace-setting device technologies, highly reliable computing and communications products, and a worldwide corps of systems and services experts uniquely position us to deliver comprehensive solutions that open up infinite possibilities for our customers' success.
Did You Know?
• Fujitsu is the world's third-largest IT services provider and Japan's market leader.
• Fujitsu and Fujitsu Siemens Computers together are among the world's top five providers of servers and PCs.
• Fujitsu customers include over half the Fortune Global 500.
• Fujitsu innovations have garnered over 32,000 patents.
• Included in the Dow Jones Sustainability Indexes and FTSE4Good Index Series, Fujitsu is recognized as an IT industry leader in sustainability and corporate responsibility.
SiVenture A Division of NDS Limited
SiVenture is a CommerciaL Evaluation Facility (CLEF) under the UK IT Security Evaluation & Certification Scheme.
SiVenture operates one of the best-equipped, independent analysis laboratories to be found anywhere, capable of delivering a range of services aimed at testing the security of smart card technology. SiVenture undertakes the review of Protection Profiles and formal evaluation of smart card chip hardware under Common Criteria, and provides consultancy on smart card related issues.
SiVenture's capability is drawn from a solid base of experienced evaluators (ITSEC/Common Criteria), smart card technology professionals, cryptographers, electronics engineers, physicists and mathematicians able to address a wide range of challenges.
SiVenture has an international client base built on long term relationships. Our business is founded on the expertise and skill of our staff, and on trust and integrity.
SiVenture's clients include some of the world leaders in smart card technology design and manufacture as well as government and other evaluation houses.
A range of evaluation and evaluation support services, as well as consultancy and laboratory services are available at SiVenture. For more information please visit our web site at www.siventure.com.
Ricoh Company, Ltd.
A leading global manufacturer of office automation equipment, Ricoh provides copiers and multifunctional products as well as printers,
scanners, and digital duplicators. Ricoh also offers a broad range of office solutions with unparalleled support and services that include, for example,
comprehensive document solutions to help customers streamline their businesses and cut operating costs.
The Ricoh Group comprises 347 consolidated subsidiaries worldwide that employ approximately 75,100 people.
For more information on Ricoh, please visit the company's Web site at http://www.ricoh.com/.
Renesas Technology corp.
Security Technology Center, MCU Business Unit
Established on April 1, 2003 as a joint venture between Hitachi, Ltd. and Mitsubishi Electric Corporation, Renesas Technology started its life as one of the world's largest semiconductor companies.
Guided by the slogan "Everywhere You Imagine," Renesas promotes its products with a focus on security as an important factor in the realization of a ubiquitous networking society.
Renesas has high world market share in the smartcard microcomputer industry with its AE Series products, incorporating high security technologies. Along with the development of the AE Series, Renesas has been contributing to the improvement of security in a variety of fields including financial cards, ID cards, and the SIM cards for mobile phones.
In 2002, Hitachi was awarded Common Criteria Certificates for two smart card products at EAL4+. Renesas has continued this work, and was awarded one certificate in 2003, and two certificates in 2004, all at EAL4+.
TOSHIBA TEC provides solutions to the problems and issues facing users now, as well as those that they are likely to face in the future. "Solutions" is the keyword throughout TOSHIBA TEC's document processing & telecommunications.
In our document processing and telecommunications business, we are focusing our efforts on developing the Network-Ready MFP concept, which generates new value by means of links with other devices and software that are connected to networks.
Korea Information Security Agency
KISA, which is the primary information security organization in Republic of Korea, exerts every efforts to establish a safe cyber world. Its major missions include followings;
- Evaluating IT Security Product
- Internet Incident Response
- Combating Spam
- Protecting Privacy & Personal Information
- Managing Digital Signature: Korea's Root CA
- Building Up e-Business Infrastructure
- Protecting Information & Communication Infrastructure
- Awakening & Training in Security
KISA contributes to the realization of secure and reliable digital world by evaluating various IT security products.
o IT Security Product Evaluation
KISA validates trust and reliability of IT security products by evaluating against CC.
- IT Security Product Evaluation
*Total number of evaluated products since 1998 : 95 (July 28, 2005)
- Protection Profile Development and Evaluation
- Evaluation Consultancy and Service
o IT Security Product Evaluation Methodology Development
KISA strives to enhance the evaluation capability toward global level competence by research and development for recent trend and evaluation technology of IT products.
- Evaluation Criteria, Procedures and Guidance Development
- High Assurance Level Evaluation Methodology Development
NEC group provides IT solutions, network solutions, and semiconductor solutions. For IT security, NEC group provides the total solution services that consist of the security management, countermeasures against cyber-attacks, measures to prevent the information from leakage, the network infrastructure, and the authentication infrastructure. We introduce the security consulting service related to ISO/IEC 15408 (Common Criteria) and a product group named "InfoCage".
As for the security consulting service related to ISO/IEC 15408, we provide
- ISO/IEC 15408 certification acquisition support service,
- Security Target development support service, and
- ISO/IEC15408 education and training service.
Main features of InfoCage are
- Server control to prevent confidential data from taking out. It makes some operations (ex. printing, copy to eternal media) invalid.
- File encryption for important data with simple operation. It is effective in the case leaving note PCs/flash memories.
- Mobile protection. It forbids unauthenticated person to use the PC, read or retrieve the data in the PC.
Fuji Xerox Co., Ltd.
Fuji Xerox's business vision, "Open Office Frontier (OOF)," expands conventional document services provided and used within single corporate customers to services that can be used outside offices to facilitate cooperation among companies, thereby contributing toward enhancing the customers' operational efficiency, intellectual competitiveness, and individual workers' creativity.
In an OOF environment, security is a critical issue. Fuji Xerox's DocuCentre 719 series launched in 2003 and all subsequent products offer a data security kit that prevents leakage of information from the hard disk. Two models with the data security kit have been certified to comply with the Common Criteria. In addition, ApeosPort series offers advanced functions such as encrypted communication.
LAC Co., Ltd.
Little eArth Corporation Co., Ltd. (LAC) is the leading company dedicatedto network security against cyber-terrorism.
For securing networks,our highly skilled engineers consult with our clients to provide them with the best custom solutions. Based on
their risk analysis,best solutions of protecting servers are advised for end users and administrators. Those solutions include, but are not
limited to setting up secure servers, monitoring servers (the first and only 24x7x365 monitoring service in Japan) with an emergency
response team, applying patches, reselling products, and implementing security policies based on well recognized guidelines. In addition to
the above solutions,individuals may obtain valuable information by training, having lectures,reading books or magazines.
Microsoft Co., Ltd.
At Microsoft, we work to help people and businesses throughout the world realize their full potential. This is our mission. Everything we do reflects this mission and the values that make it possible.
NTT DATA CORPORATION
NTT DATA traces its roots back to 1967, to the establishment of the Data Communications Bureau within Nippon Telegraph and Telephone Public Corporation (present-day NTT). The Bureau sustained consistent growth based on system development, building, operation, and maintenance across a broad front, ranging from nation wide systems that formed the cornerstones of society to a multiplicity of corporate network systems.
In 1988 it began a new chapter in its story when it became NTT DATA Corporation.
Today, NTT DATA has grown into a group comprising 90 subsidiaries and affiliates. It possesses comprehensive strengths and has the best track record of any system integrator in Japan. It harnesses these many strengths to engage in business that is in keeping with its two priority management policies: "Enhancing the Competitiveness of the System Integration Business" and "Creating New Businesses."
In an information network society, it is not enough simply to increase business efficiency and make daily life more convenient. NTT DATA is committed to using IT to shape the affluent society of the future, a place where information can be accessed at any time and in any place.
"Insight for the New Paradigm": Shaping the Future with IT
Total Solution Provider for Secure Network
HUCOM offers the best solution suited at the security management cycle as an enterprise that meets customer's various information security needs by the one stop.
Main business contents
System integration business
Sale and introduction service of Information security product
Consulting and the audit service for the Information security
Information security education service
Maintenance and operation service
Federal Office for Information Security(BSI)
The Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik / BSI) is the central IT security service provider for the German government. The BSI's services and products are aimed at the users and manufacturers of information technology products. Those are primarily the public administration at federal, state and municipal level, in addition companies and private users. As Germany's National Security Agency, it is the goal of the BSI to promote IT security in Germany so that everyone can make the most of the opportunities opened up by the information society.
One focus of the BSI is certifying IT security products and systems as well as producing Protection Profiles. Certification is provided on the basis of international criteria as the Common Criteria (ISO/IEC 15408), which are produced and maintained with substantial involvement by the BSI. The BSI issued over 35 certificates in 2004 and even more are expected for 2005. The Certification Body of the BSI is specialised in the field of smart cards (hardware and software), operating systems (for mid-range and mainframe systems) and communication security products (e.g. VPN, firewall).
LG N-Sys-formerly, the DSS division of the LG Electronics-has been the pioneer of Korean IT industry, since 1977, when IT industry was fairly new at the time.
LG N-SYS has been a leader in the domestic industries for computing and automated machinery for financial purposes. By constantly researching and developing new techniques, combined with exceptional investment strategies, we provide optimum solutions and system development to help customers adjust to the ever-changing e-business environment. In addition to establishing server systems and financial system projects, we have recently focused on developing projects such as KMS, EAI, Security S/W Integration System projects. These areas concentrate on solution and consultation service that provide the basis for e-business. We at LG N-SYS, as "The Leader of System & Solution Provider", strive to provide the best value for our customers with vision far into the 21st century.
Toshiba Group's ability to deliver wide-ranging products and services—digital products such as personal computers and software, TVs, DVD players, mobile phones; IT solutions and security card systems; home appliances; electronic devices and components, including semiconductors and display devices; social infrastructure systems such as power systems, road and railway systems and broadcasting systems—allows it to focus on providing customers worldwide with optimized solutions.
Fully aware of the importance of information security, Toshiba contributes to secure system environments for the customers with know-how developed to ensure its own in-house security.
T-Systems -business flexibility
Flexibility is today a key to business success. Flexible enterprises are able to react quickly to changes in their market environment. More than that, they actively help to shape those changes and thus successfully stay on course.
T-Systems supports companies in achieving their objectives. We make our customers' work easier by taking care of all of their ICT needs - right up to taking on complete business processes. That's how we make our customers more flexible in their core business. And: Flexibility yields competitive advantages.
T-Systems is a one-stop provider of a full range of services covering all project phases - from planning (Plan) to implementation (Build) and operation (Run) - as well as our customers' end-to-end value chains. "Security Services and Solutions" is one key competence of T-Systems covering Security Consulting, Security Solutions, Security Engineering and Security Evaluation.
The evaluation facility evaluates products, processes and systems and thereby supports manufacturers and IT-operators to improve the security level. We are internationally known as the leading specialists in the field of evaluation of security measures in hardware und software and are accredited by the German Government (BSI) and various international institutions such as VISA International and MasterCard.
TUViT - The evaluation service provider for IT security
In the field of IT security, TUViT provides security testing, evaluations and certifications which comply with European and international standards and meet specific security criteria at all levels. The experience and established expertise of over 30 evaluators and 150 evaluations by the evaluation body for IT security make TUViT to one of the largest internationally operating organizations.
•Accredited and licensed evaluation body for ITSEC / CC and FIPS 140 evaluations
•Worldwide recognition of evaluation results within the framework of accreditation by the Federal Office for Information Security (BSI)
Mizuho Information & Research Institute, Inc.
Mizuho Information & Research Institute, Inc. will establish "Systems Integration", "Outsourcing," and "Consulting" as the three pillars of business, and organize the strengths of each into one, to provide high quality total solutions.
Nowadays, maintaining security is crucial to company survival. At Mizuho Information & Research Institute, Inc., we focus on corporate strategy and risk management to provide a variety of services, including security diagnosis, policy formulation and consulting. Our customers benefit from the optimal solutions custom made for their IT security, security infrastructure maintenance, risk management and crisis management system needs.
Mizuho Information & Research Institute, Inc. provides IT product and system security evaluation services as an "Common Criteria for Information Technology Security Evaluation (ISO/IEC15408)" evaluation facility (Evaluation Assurance Level: EAL4) based on the "Japan Information Technology Security Evaluation and Certification Scheme (JISEC)". We fuses its know-how as an evaluation facility with its broad knowledge to function as a think tank and integrator that provides consulting to ensure that the IT products and systems developed and supplied by customers lead to the efficient acquisition of Common Criteria certification.
JAPAN QUALITY ASSURANCE ORGANIZATION
The accelerated globalization of the economy and the dramatic increase in information have transformed the social environment and people are now more demanding when it comes to health, safety, and environmental conservation.
Against such a background, JQA has received wide recognition as a third-party testing, inspection and certification organization which carries out, in accordance with national and international standards and criteria, a range of services: management system assessment and registration; product safety and electromagnetic environment testing; calibration and verification of measuring instruments; environmental surveys and analyses; testing and inspections of machinery and construction materials and so on.
JQA ties up with overseas conformity assessment bodies and flexibly addresses needs in new CDM(Clean Development Mechanism)-related fields and information security. At the same time, JQA supports efforts toward a society based on sustainable development with a balance between global environmental conservation and economic activity.
Electronic Commerce Security Technology Laboratory Inc.
An evaluation center of Electronic Commerce Security Technology Laboratory Inc. (ECSEC) is an official evaluation laboratory in "Japan Information Technology Security Evaluation and Certification Scheme (ISO/IEC 15408)".
Certified products which we have ever evaluated cover a wide field of market, such as Smart Card, Finance, Public Key Infrastructure (PKI), Multi Functional Peripheral (MFP), Electronic Document management, and so on.
When you have products which are expected certified or you need some assistance about security, please feel free to contact ECSEC with ease.
E-mail to: firstname.lastname@example.org
FUJITSU HOKURIKU SYSTEMS LIMITED
FUJITSU HOKURIKU SYSTEMS is the remarkable company that has wide-ranging technologies covering from software development to system integration.
Fields of its business are as diverse as basic software, application software, system design, technical support, outsourcing, and so on.
In these days of IT technological leaps, they are making another effort to the leading edge of technologies of Java componentized object for server (EJB), distributed object(CORBA), database, and ISO/IEC 15408, in preparation for the next generation.
The technologies grown there are being reflected on the solutions of frontier aggressively.
Japan Electronics and Information Technology Industries Association
Achievements of JEITA
Began a survey related to security evaluation standards
Published The Basic Requirement of Computer Security(Functionality and Assurance Versions)
First Trial evaluation in Japan using Common Criteria V1.0(the basis for 15408
Participated in creation of the JIS standard for security from the International Standard
Participated in establishment of the security evaluation/Certification program system in Japan
Developed the "System Protection Profile for e-government"
Participated in production of the JIS-TR for CEM(Common Methodology for Information Technology Security Evaluation
Acquired authorization as an EAL3 Security Evaluation Facility
Acquired authorization as an EAL4 Security Evaluation Facility
•Security evaluations for IT products/System
•Consultations for security evaluation
•Security education to train security engineers
•Research and development to apply methodology of security evaluation to systems more efficiently