Red Hat Adds Common Criteria Certification for Red Hat Enterprise Linux 8

Independent security certification for Red Hat Enterprise Linux 8.2 helps to extend the world’s leading enterprise Linux platform as a trusted foundation for computing across the open hybrid cloud, from traditional to cloud-native workloads


Red Hat, Inc., the world's leading provider of enterprise open source solutions, today announced a new Common Criteria Certification for Red Hat Enterprise Linux 8.2, further strengthening Red Hat Enterprise Linux as a platform of choice for users with critical workloads in classified and sensitive deployments.


Linux is the foundation for modern computing, including sensitive IT deployments of all kinds across the hybrid cloud.

Clara Conti

Vice President and General Manager, North America Public Sector, Red Hat

A Common Criteria Certification is intended to provide a level of assurance that a product meets a certain security criteria for specific computing environments. A component of the validation is rigorous, standardized and repeatable testing by any independent third party and provides common ground for sensitive computing operations at an international level.

For Common Criteria, Red Hat Enterprise Linux 8.2 was certified by the National Information Assurance Partnership (NIAP), with testing and validation completed by Acumen Security, a U.S. government-accredited laboratory. The platform was tested and validated against the Common Criteria Standard for Information Security Evaluation (ISO/IEC 15408) against version 4.2.1 of the NIAP General Purpose Operating System Protection Profile including Extended Package for Secure Shell (SSH), version 1.0 and is the latest Red Hat Enterprise Linux version to appear on the NIAP Product Compliant List.

Open innovation for sensitive computing

As IT’s threat landscape continues to evolve, organizations must find ways to continue protecting sensitive environments and systems while still keeping pace with technological innovation. Red Hat is committed to answering this need through a comprehensive, cross-portfolio evaluation and U.S.-government recognized validation effort. The many secure computing certifications achieved by Red Hat Enterprise Linux highlight this drive, as well as establishing Red Hat Enterprise Linux as the bedrock for Red Hat’s open hybrid cloud offerings in highly-regulated IT deployments.

Red Hat Enterprise Linux 8.2 provides more than a validated foundation for security-conscious computing environments - it also includes the benefits of a Red Hat subscription. While a Red Hat subscription includes extensive levels of technical support, it also provides longer product lifecycles with more reliable and predictable product updates, a dedicated security response team for analyzing and addressing potential vulnerabilities as they appear and proactive analytics tools to help identify and remediate potential system issues.

Supporting Quotes
Clara Conti, vice president and general manager, North America Public Sector, Red Hat
“Linux is the foundation for modern computing, including sensitive IT deployments of all kinds across the hybrid cloud. Today’s Common Criteria Certification of Red Hat Enterprise Linux 8.2 shows our continued commitment to making Red Hat Enterprise Linux a platform that not only embraces innovation but also serves as the backbone for critical and security-sensitive operations.”

Kenneth Lasoski, Director, Common Criteria, Acumen Security
“Acumen Security, part of the global Intertek High Security Certifications group, congratulates Red Hat on the successful Common Criteria certification of Red Hat Enterprise Linux 8.2. This rigorous security evaluation against stringent requirements for General Purpose Operating Systems identified by the National Information Assurance Partnership under the international Common Criteria Certification standard demonstrates and confirms Red Hat’s commitment to make Common Criteria certified versions of Red Hat Enterprise Linux available to security conscious customers, such as national security-related agencies, finance and healthcare organizations. We are honored that Red Hat has once again selected Acumen Security as their security certification partner to achieve this significant milestone as well as applaud their continued commitment and contribution to the information security industry.”

    Additional Resources

    Connect with Red Hat

    • Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver reliable and high-performing Linux, hybrid cloud, container, and Kubernetes technologies. Red Hat helps customers integrate new and existing IT applications, develop cloud-native applications, standardize on our industry-leading operating system, and automate, secure, and manage complex environments. Award-winning support, training, and consulting services make Red Hat a trusted adviser to the Fortune 500. As a strategic partner to cloud providers, system integrators, application vendors, customers, and open source communities, Red Hat can help organizations prepare for the digital future.

    • Except for the historical information and discussions contained herein, statements contained in this press release may constitute forward-looking statements within the meaning of the Private Securities Litigation Reform Act of 1995. Forward-looking statements are based on the company’s current assumptions regarding future business and financial performance. These statements involve a number of risks, uncertainties and other factors that could cause actual results to differ materially. Any forward-looking statement in this press release speaks only as of the date on which it is made. Except as required by law, the company assumes no obligation to update or revise any forward-looking statements.


      Red Hat, Red Hat Enterprise Linux and the Red Hat logo are trademarks or registered trademarks of Red Hat, Inc. or its subsidiaries in the U.S. and other countries. Linux® is the registered trademark of Linus Torvalds in the U.S. and other countries.