On Wednesday, February 29, 2012, during a reception at the RSA Conference in San Francisco, SAP received the Common Criteria Certification for SAP NetWeaver Application Server ABAP. With this certificate SAP completes the Common Criteria Certification of its SAP NetWeaver technology platform. The Common Criteria are internationally accepted standards for secure information technology. It allows IT users to compare and benchmark software and applications. The certificate also sends a clear signal that a vendor’s software lives up to its security claims and has been verified by a standardized evaluation process.

SAP received a level 4+ Common Criteria Certification for SAP NetWeaver Application Server ABAP 7.0, enhancement package 2, support package 8. During the evaluation process, the auditors not only checked the application’s security features and functions but also the security of the development life cycle and processes. The Common Criteria Certification attests that SAP meets ambitious security requirements in various "disciplines", including software architecture, guidance documents for customers, processes related to the software production, security target evaluation and testing methodologies. SAP software has also successfully passed a comprehensive vulnerability assessment. 

More details on the Common Criteria Certification and the certification report in full are available on SAP Service Marketplace at

https://service.sap.com/commoncriteria.