The AIX 7 Operating System has received the new, Operating System Protection Profile Version 2.0 BSI-CC-PP-0067-2010 with the OSPP Extended Packages: General Purpose Cryptography, Integrity Verification, Virtualization, Advanced Management, and Labeled Security at the EAL4+ level
The new OSPP Common Criteria certification replaced the previous Common Criteria certification such as the old Common Access Protection Profile (CAPP)
AIX has had a long history of receiving security certifications going back to the old C2 standard that AIX 4.2 was certified on back in 1997. As security certifications evolved to the Common Criteria standards, CAPP/EAL4+, successive releases of AIX including AIX 5.2, AIX 5.3 and AIX 6 all received certification.
In 2010 the Common Criteria organizations established the new OSPP standard as an evolution of the Common Criteria standard to address the fundamental changes in the industry as the result of the migration from single isolated systems to networked, multi-system environments http://www.atsec.com/us/news-operating-system-protection-profile-200.html
The Target of Evaluations (TOE) for this new AIX 7 certification includes an evaluation of the PowerVM Virtual I/O Server (VIOS).
Common Criteria certifications are based on a set of internationally recognized technical standards and configurations that are used to evaluate the security of Information Technology products and technology.
IT organizations typically use Common Criteria certification as one measure of the suitability of a particular computing technology for use in their business.
Obtaining a Common Criteria certification is a long and expensive process and this most recent certification is a testimony to the IBM commitment to AIX and Power Systems.