May 7 | The Hotel UMD, College Park, Maryland

Common Criteria Day Agenda 2024

Common Criteria Day will provide industry professionals an overview of the current status and future outlook for Common Criteria, the cybersecurity framework that underpins CSfC.

Part of a 3-Day Focus on Federal ICT Product Certification

Events include Monday, May 6: Common Criteria Day, CMMC Day Tuesday, May 7: CSfC Conference Wednesday, May 8: Cyber Trust Mark Day, DoDIN APL Day.

One-Day, Two-Day and Three-Day Discount Registration is available.

Monday, May 6

Presented the day before the CSfC Conference

08:00-09:00 Registration

09:00 – 10:30 Conference Session

Introduction and Overview

09:00 Overview of the Common Criteria Certification Process, Working with Testing Labs (R00a) Kevin Micciche, Senior Manager, HPE Aruba Networking


09:30 US Common Criteria Scheme Update (R00b) Matthew Downey, Technical Lead, Account National Information Assurance Partnership (NIAP)


10:00 EU Cybersecurity Certification—Affect on Harmonized CC Between the US and EU (R00c) Brian Wood, Program Manager, Google

10:30-11:00 Networking Break in Exhibits

11:00-12:30 Conference Session

Meeting Federal Requirements

11:00 Common Criteria, the Building Blocks for CSfC (R01a) Chris Gugel, Lab Director, Booz Allen Hamilton


11:30 Vulnerability Handling in Common Criteria (R01b) Daniel O’Loughlin, VP Engineering, Qualcomm


12:00 Claiming Equivalency to Broaden Product-Line Coverage (R01c) Shaunak Shah, Manager, Engineering, Intertek, Acumen Security

12:30–13:30 Lunch in Exhibit Area

13:30-15:00 Conference Session

CC in Practice

13:30 NDcPPv3.0e Changes and Updates (R02a) Kristy Knowles, Security Research Engineering Technical Leader, Cisco


14:00 A CC Testing Lab’s Survival Kit (R02b) Yi Mao, Managing Director, atsec information security corporation


14:30 ​​Update on the Common Criteria in the Cloud Technical Working Group (R02c) Justin Fisher, Senior Security Assurance Engineer, Leidos

15:00-15:30 Networking Break in Exhibits

15:30-17:00 Conference Session

CC Innovation & Outlook

15:30 NIAP SBOM Pilot (R03a) Jade Stewart, Portfolio Manager, National Information Assurance Partnership (NIAP)


16:00 PQ for VPNs: Affects on CC Evaluations for VPN Gateways (R03b) Anantha Kandiah, Engineering Director, Teron Labs


16:30 Common Criteria and FedRAMP (R03c) Ben Tucker, Sr. Software Engineer, SafeLogic

17:00 Adjourn