Jump to content United Kingdom-English
HP.com United Kingdom home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
HP.com United Kingdom home
Large Enterprise Business  >  Technologies  >  Open Source & Linux

Open Source and Linux from HP

Primed for Business Advantage
» 

Large Enterprise Business

» Linux on Integrity servers
» HP Integrity servers
» Business continuity & availability
» HP Integrity solutions
» Linux on ProLiant servers
»

Open source and Linux from HP

» Red Hat Enterprise Linux
» SUSE Linux Enteprise Server
» Linux certification & support
» HP Linux solutions & partners
» Linux support & consulting services
» Linux on Integrity case studies
» Product information
» Product literature
Call 1-888-475-4689 or complete the contact request form
Content starts here

Got a big project?

» Contact HP

Security news

HP Common Criteria certification - demonstrating Linux platform security

Common Criteria certification is an important government requirement to ensure that the product’s security aspects meet the specific security demands of government customers around the world. HP, along with partners Red Hat and Intel, worked in cooperative partnership to maintain compliance on HP Linux platforms with the internationally recognized Common Criteria standard.

HP has made great strides in supporting Common Criteria certification on a broad range of HP server and desktop products including:
- HP Integrity product line (Superdome, RX, CX) 
- HP ProLiant ML product line 
- HP ProLiant BL product line 
- HP ProLiant DL product line 
- HP Workstation XW product line 
- HP Compaq DC product line (desktop and notebook) 

Refer to the Red Hat or Novell SUSE security targets below for detailed information on supported HP product architectures and HP’s Linux support matrices  for current Linux support information on HP products. Contact your local sales representative for a detailed discussion on HP’s Linux supported server products.

HP has demonstrated its commitment to the government security community by completing three consecutive certifications with Red Hat Enterprise Linux as well as one recent certification with Novell SUSE Linux Enterprise Server.

HP has selected atsec information security as our evaluation lab. HP has worked successfully with atsec in completing all our previous Common Criteria certifications for HP systems with Linux.

Certification Configuration Guides and highly secure applications

The Certification Configuration guides can be very useful when implementing a highly secure configuration of Linux on HP systems. Here are a few of the topics included: 

  • Installation and the selection of install options and packages 
  • Setting up SSH, FTP, xinetd 
  • Setting up the audit subsystem 
  • Systems operation 
  • Monitoring, Logging and Audit 
  • Security guidelines

Evaluation Configuration Guides for RHEL4U2, RHEL3U3 and SLES8 are available for configuring your systems to meet Common Criteria certification guidelines.

Multi-level security enhancements

HP teamed with Red Hat and Intel to create an even more secure Linux platform for government and commercial IT deployments that require trusted operating system features and to minimize the risk of damage from attacks on their networks. This work includes Labeled Security Protection Profile (LSPP) and Role Based Access Control (RBAC) certification at EAL 4+, which resulted in the first Common Criteria certified, multi-level security platform using a standard commercial Linux offering.  
 
HP made significant contributions to Linux functionality for multi-level security including: 

  • file system auditing 
  • labeled printing 
  • labeled networking (Netlabel) compatible with legacy MLS systems 

These HP contributions are provided under open source license, specifically GPL. 
 
Security functionality is now integrated into Red Hat Enterprise Linux 5 from HP and Red Hat running on industry standard HP ProLiant, HP BladeSystem, and HP Integrity servers, along with select HP workstations, desktop systems and notebooks. Such built-in security raises the bar for trusted Linux customer deployments while facilitating ISV and developer integration, since partners need not employ a specialized OS version or proprietary hardware like alternative trusted operating systems.

FIPS Certification for Open SSL

The Open Source Software Institute was notified in January 2006 that they had successfully received FIPS 140-2 certification for Open SSL by the Cryptographic Module Validation Program (CMVP). HP is proud to have provided resources and leadership towards this momentous achievement. For more information: 

HP NetTop 1.3

HP NetTop 1.3 provides highly secure access to multiple network domains
  • Provides security policy and management utilities
  • Simplifies highly secure desktop consolidation
  • NSA certification
  • HP NetTop

Documentation


documentation
»  Trusted Solaris to Linux white paper
»  Information Assurance with HP Integrity Servers and Red Hat Enterprise Linux (pdf)
»  The Path to Multi-Level Security (white paper)
»  Common Criteria FAQ (pdf)
»  Solaris to Linux Porting Guide (pdf)

Common Criteria Certification

Red Hat Enterprise Linux 5


»  Security target for LSPP, CAPP and RBACPP compliance (pdf)
»  HP RHEL5 Evaluated Configuration Guide (pdf)
»  RHEL5 EAL4+/CAPP/LSPP/RBACPP Certificate
»  NIAP website announcement

Red Hat Enterprise Linux 4 Update 2


»  Security Target for CAPP Compliance (pdf)
»  Evaluated Security Configuration Guide (pdf)

Red Hat Enterprise Linux 3 Update 3


»  AS Security Target for CAPP Compliance (pdf)
»  WS Security Target for CAPP Compliance (pdf)
»  Evaluated Security Configuration Guide (pdf)

SUSE Linux SLES 8 SP 3


»  Security Target for CAPP Compliance (pdf)
»  Evaluated Security Configuration Guide (pdf)
Printable version
Privacy statement Using this site means you accept its terms
© 2011 Hewlett-Packard Development Company, L.P.