What is the NIAP?
The National Information Assurance Partnership (NIAP) is a U.S. Government initiative designed to meet the security testing, evaluation, and assessment needs of both information technology (IT) producers and consumers. NIAP is a collaboration between the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA) in fulfilling their respective responsibilities under the Computer Security Act of 1987. The partnership, originated in 1997, combines the extensive security experience of both agencies to promote the development of technically sound security requirements for IT products and systems and appropriate metrics for evaluating those products and systems. The long-term goal of NIAP is to help increase the level of trust consumers have in their information systems and networks through the use of cost-effective security testing, evaluation, and assessment programs. NIAP continues to build important relationships with government agencies and industry in
Related Questions
- If an evaluation starts after 1 October 2009 in another scheme and does not conform to a US government PP, will it be recognized by NIAP since the policy then will be to require US PP compliance?
- How will the NIAP changes affect the Federal Information Processing Standard (FIPS) 140-2 Level 4 requirements, which states that if an operating system is used that it must be EAL4?
- What is NIAP and who does the evaluations?
