SGI and atsec information security announced the completion of the Common Criteria evaluation of Red Hat Enterprise Linux (RHEL) 4 Update 4 at evaluation assurance level (EAL) 3+ with compliance to the Controlled Access Protection Profile (CAPP). RHEL4 Update 4 was examined on the SGI Altix server platform. The U.S. NIAP CCEVS Common Criteria scheme is the certifier for the evaluation, the result of which is internationally recognized through the Common Criteria Recognition Arrangement.

atsec is the world's most successful Common Criteria evaluator of Linux operating system products. To date, the company has performed ten Linux evaluations on six different Linux platforms at assurance levels EAL2, EAL3, and EAL4+ under both the German BSI and U.S. NIAP CCEVS Common Criteria schemes. atsec's security experts were able to shift evaluation efforts from RHEL4 Update 3 to RHEL4 Update 4 when it became evident early in the evaluation process that Update 4 would be released during a compatible timeframe.

Stephan Müller, atsec Lead Evaluator on the project notes: "At atsec, we are proud of our status as the world leader in Linux evaluations, and maintaining that status requires us not only to pay attention to ongoing evaluations, but also to constantly monitor developments in the Linux world. Because we were confident that Update 4 would be released as scheduled, we were able to adjust our evaluation efforts to move from Update 3 to Update 4. This greatly benefits SGI, because the evaluation actually completed just after release of Update 4. When certification occurs almost concurrent with product release, the sponsor reaps the maximum benefit from his investment in evaluation."

"CAPP certifications assure customers that the software running on SGI Altix systems is the most secure Linux can deliver today," said Beverly Bernard, marketing manager, SGI. "Protecting access to information is especially important in these days of infiltration of systems by hackers, many of whom are people who do not have the best interest of corporations in mind."

Red Hat Enterprise Linux 4 provides an enterprise-focused Linux environment. Areas of specific development include improvements in security capabilities, increased server performance and scalability, and enhanced desktop capabilities.