Commercial COMSEC Evaluation Program - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Information Assurance Menus

Information Assurance Menu

Information Assurance About IA at NSA Partners Rowlett Awards Award Recipients Background Nomination Procedures Links IA Client and Partner Support IA News IA Events IA Mitigation Guidance Media Destruction Guidance Security Configuration Guides Applications Archived Guides Cisco Router Guides Database Servers Fact Sheets Industrial Control Systems (ICS) IPv6 Operating Systems Supporting Documents Switches VoIP and IP Telephony Vulnerability Technical Reports Wireless System Level IA Guidance TEMPEST Overview TEMPEST Products: Level I Certified Confirmed Deficiencies Suspended Terminated No Longer Produced TEMPEST Products: Level II Certified Confirmed Deficiencies Suspended Terminated No Longer Produced TEMPEST Company POCs Certified Suspended Terminated Trusted Computing IA Academic Outreach National Centers of Academic Excellence in IA Education CAE/IAE Program Criteria CAE-R Program Criteria Colloquium Institutions SEAL Program Applying FAQs IA Courseware Evaluation Program Institutions FAQs Student Opportunities IA Business and Research IA Business Affairs Office Certified Product Sales and Support Commercial COMSEC Evaluation Program Commercial Satellite Protection Program Independent Research and Development Program User Partnership Program Partnerships with Industry NIAP and COTS Product Evaluations IA Programs Commercial Solutions for Classified Program Global Information Grid High Assurance Platform HAP Technology Overview HAP Technology Partner Program HAP Resource Library Inline Media Encryptor Suite B Cryptography NSA Mobility Program IA Careers Contact Information	Skip Search Box Searchbox Commercial COMSEC Evaluation Program The Commercial COMSEC Evaluation Program (CCEP) is a development program for IA products. Under the CCEP, NSA enters into a business relationship with a vendor to develop and produce products that are of direct and obvious benefit to improving the IA posture for DoD customers. NSA applies its limited IA resources to evaluate those products that best provide for widespread availability of quality, inexpensive, secure communications systems for use by the U.S. Government. Interested vendors must complete a CCEP Product Summary Questionnaire. The answers to that questionnaire are the basis for the CCEP decision. Information in the vendor's product proposal is measured against national IA needs and priorities to determine the suitability of a potential product. What is the process to initiate a CCEP agreement? Product vendor contacts Business Affairs Office NSA provides vendor with Product Summary Questionnaire (PSQ) Vendor completes and submits PSQ Business case is determined Vendor then submits a detailed proposal Detailed proposal is reviewed for technology and market Product is accepted into program NSA and Vendor enter into a legal agreement NSA and Vendor participate in a security evaluation NSA certifies the security embedded within the product/service
	Date Posted: Jan 15, 2009 \| Last Modified: Apr 23, 2012 \| Last Reviewed: Apr 23, 2012

bottom