Gemalto Achieves Major Breakthrough in Security Technology with Java Card™ Highest Level of Certification
World’s first Common Criteria certificate of a smart card involving formal assurances from the utmost EAL7 level
Amsterdam, the Netherlands, October 10, 2007–Gemalto (Euronext NL0000400653 GTO), the world leader in digital security, today announces that its implementation of Java Card™ technology has been Common Criteria certified EAL4 using formal assurances from the EAL7 level, the highest level of certification possible. This is the world’s first Common Criteria certificate of a smart card involving formal assurances from the EAL7 level. It provides high confidence in open multi-application cards as it ensures that each embedded application is completely and securely isolated from the others and that this security process has been mathematically proven. Gemalto received the certification end of September 2007.
The EAL levels, which range from 0 to 7, offer a simple scale for comparative measurement to the consumer. Internationally designed and recognized “Common Criteria” security certificates using the EAL scale enable to verify that products meet the security claims made by vendors. The EAL7 formal assurances in this certification provide the highest measure to verify the design and implementation of the security mechanisms of the Java Card System of the smart card. This achievement demonstrates that Gemalto uses the most advanced means of designing and testing the security of its Java Card products. The certification also conforms to Sun Microsystems’ Java Card System Protection Profile.
The certification was performed by the French DCSSI (Central Administration for Information Systems Security–Direction Centrale de la Sécurité des Systèmes d’Information). The measures of the DCSSI are focused on the functional and assurance requirements of a security product. Functional requirements define the desired security of the product as offered by the security vendor, and assurance requirements confirm the effectiveness and implementation of the security mechanisms.
This certificate received by Gemalto is recognized internationally, through the SOG-IS and CCRA international agreements.
All trademarks are properties of their respective owners.
Gemalto (Euronext NL 0000400653 GTO) is the leader in digital security with pro forma 2006 annual revenues of €1.7 billion, more than 85 offices in 40 countries and about 10,000 employees including 1,300 R&D engineers. In a world where the digital revolution is increasingly transforming our lives, Gemalto’s solutions are designed to make personal digital interactions more convenient, secure and enjoyable. Gemalto provides end-to-end digital security solutions, from the development of software applications through design and production of secure personal devices such as smart cards, SIMs, e-passports, and tokens to the deployment of managed services for its customers. More than a billion people worldwide use the company’s products and services for telecommunications, financial services, e-government, identity management, multimedia content, digital rights management, IT security, mass transit and many other applications.
As the use of Gemalto’s software and secure devices increases with the number of people interacting in the digital and wireless world, the company is poised to thrive over the coming years. Gemalto was formed in June 2006 by the combination of Axalto and Gemplus. For more information please visit http://www.gemalto.com.
T: +33 (0)1 55 01 51 05
M: +33 (0)6 16 29 87 04
T: +33 (0) 1 49 09 27 92
M: +33 (0) 6 82 36 01 51