Accreditation and Testing Services
A Market Leader in IT Security Evaluation and Testing. Leidos’ AT&E is comprised of 3 laboratories accredited by National Institute of Standards and Technology (NIST) to provide required IT security evaluation and testing services for commercial companies and the DoD under several certification standards. Our technical excellence has allowed our test and evaluation laboratories to dominate their markets.
- Leidos dominates approximately 50% of the U.S. Common Criteria evaluation market
- Leidos dominates approximately 50% of the Cryptographic Module validation market
- Leidos completed the first PIV Middleware validation
- Leidos has completed the most GSA FIPS 201 Evaluations (over 90%)
- Leidos is the first laboratory accredited to perform GSA evaluations
- Leidos is the first laboratory to have products successfully validated against the Secure Content Automation Protocol (SCAP) v1.2
- Leidos is the first laboratory to have products successfully validated against the Transportation Worker Identification Credential (TWIC)
Common Criteria (CC) Testing. Leidos’ AT&E Common Criteria Testing Laboratory (CCTL) provides a complete range of CC evaluation and support services.
FIPS 140-2 Cryptographic Module Testing. Leidos’ AT&E Cryptographic & Security Testing Laboratory (CSTL) provides a complete range of Federal Information Processing Standard (FIPS) 140-2 Cryptographic Module testing and support services.
GSA FIPS 201 and NIST PIV Testing. Leidos’ AT&E CSTL provides a complete range of Personal Identify Verification (PIV) testing and support services to test PIV Middleware and Card Applications against the requirements defined by GSA’s FIPS 201 Evaluation Program (EP) and NIST Personal Identity Verification Program (NPIVP).
Secure Content Automation Protocol (SCAP) Testing. The Secure Content Automation Protocol (SCAP) tests and monitors systems for security issues such as software deficiencies, configuration issues and other vulnerabilities. SCAP testing helps to ensure that a computer's configuration is within the guidelines set by the Federal Desktop Core Configuration, a group of security-sensitive configuration settings developed by the National Institute of Standards and Technology (NIST) and the National Security Agency.
Transportation Worker Identification Credential (TWIC) Testing. Leidos’ AT&E CSTL provides a complete range of Transportation Worker Identification Credential (TWIC) testing and support services, including: Gap Analysis, Card reader evaluations (conformance to the TWIC reader specification), Product testing (operation, compatibility, electrical, safety), and Consulting.
Federal Risk and Authorization Management Program (FedRAMP) Assessments. Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. In order for a government department or agency to select your cloud products and services, your solution must have a FedRAMP Provisional Authorization to Operate (ATO).
Payment Card Industry (PCI) Data Security Standard Validation. The Payment Card Industry (PCI) Data Security Standard (DSS) is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design, and other critical protective measures. This comprehensive standard is required by the major credit card issuers to help organizations proactively protect customer account data..
Want to Know More?
Get in touch for more information about our solutions and capabilities.
Find the latest white papers and brochures from Leidos experts.
Common Criteria Testing
FIPS 140-2 and FIPS 201
Secure Content Automation Protocol Testing
Transportation Worker Identification Credential Testing
Predictive Cyber Situational Awareness
Evolving the Cybersecurity Ecosystem
Checkmate Intrusion Protection System