EC-Council Certification Labs Framework

EC-Council Certification Labs



EC-Council Labs Certification verifies the security level of Hardware and Software products. These products include the one which are being used in various organizations to protect inter network security and software used to protect the system’s security.
 
EC-Council Labs test the products and software to ensure they are developed using a pre-defined set of international standards and the desired output is achieved by testing them in real environment.
 
Products are tested using various methodologies and framework designed by the EC-Council Labs. The testing methodologies used are the proven standards and measures in real work environment. These standards help an organization to develop a product considering the maximum security level.
 
The frameworks designed to handle the tests are set up from proven methodologies. These methodologies are defined using the international testing standards.
 
The testing process is handled by EC-Council Labs certified engineers and external analysts and experts certified by EC-Council.
 
The test procedure is handled with utmost care so that all possible testing methodologies of EC-Council Labs can be implemented to test the product’s security to its maximum extent.

Step by step procedure of the product certification

In EC-Council | Labs, the product testing is carried on real work environment to make the product efficient and applicable to be used in various organizational environments.
 
The products are tested for security standards, real time load implementation for handling security threats, and to make the product independent to handle various situations which can arise in real environment.




Planning Phase

  • Vendor reviews the available product standards and they approaches EC-Council Labs to test the product
  • Vendor and EC-Council Labs mutually understand the given standards and submit the product for security, performance level, and environment testing
  • Client signs the contract and provides purchase order with EC-Council | Labs
  • Vendor sends the product to the testing location of EC-Council Labs prior to the testing dates


Analysis Phase

  • After the product is sent to the testing location, an initial analysis is conducted to test whether the product has EC Council | Labs standards
  • The product’s structure will be studied and a detailed report will be generated based on the product sent for the test
  • The work environment will be verified depending on the product’s specifications given by the vendors


Design and Strategy Phase

  • Based on the initial analysis, the product’s test design is generated
  • The test design will contain details on the methodologies to be implemented on the product for testing with respective framework
  • Depending on the analysis and design, various product testing strategies will be generated
  • The strategies will cover all the possible ways to test the product


Pre Implementation Phase

  • The EC-Council Labs engineers will setup the product and form the lab environment
  • The product will be tested to check if the initial installation process is appropriately handled
  • Once the initial product is setup, the product will be ready for test implementation


Implementation Phase

  • Initially, product functionalities and performance is tested to ensure proper working of the product
  • Various testing procedures will be implemented on the product from different strategies defined in the Design and Strategy phase using various methodologies and framework defined by EC-Council Labs body
  • All test results are recorded and stored for later use


Post Implementation Phase

  • Depending on the output generated in the testing phase, the EC-Council Labs certified experts will submit a final test report
  • Depending on the outcome, the product’s pass or fail status will be set
  • The product which attains the pass certificate will be awarded the Seal from EC-Council | Labs
  • The products which failed in the test phase will be given a report stating the process where the product was compromised. The vendor can apply for certification later after rectifying the problem; in this case, the product has to go through all the test phases again


Description
The product is tested using the methodologies and framework defined by EC Council Labs. The tests are conducted by EC Council Lab engineers and experts certified by EC Council.
 
EC-Council Labs Certification assures that using the tested product will minimize the security risk involved and maximizes the security level at an organization or for an individual. This certification will help in improving the security measures taken while developing the hardware or software product.
 
EC-Council Labs Certification guaranties that by using the certified product; the risk involved in security aspects will be reduced to the maximum extent. EC-Council Lab assumes that the vendors developing the products will follow the international standards while developing the product. The main aim of the EC-Council Labs is to certify the products following the standards and is capable of reducing the security risk involved.
 
EC-Council Labs follows a set of measures and framework designed to test a particular product. Any product will be certified based on the tests conducted by EC-Council Labs by using different types of threats defined in the framework. These pre-defined frameworks are set up by proven test methods. These methodologies are always maintained with up to date information and are always studied so that they can suggest measures for the latest threats. The framework measures are set up keeping in mind the organizational needs and the measuring level of the security risk involved.
The certification will be provided if the product passes through all the test criteria’s.
 
EC-Council lab engineers conduct the products certification at EC-Council Labs / External analysts and Experts certified by EC-Council to ensure that the product totally follows all set standards and measures.
 
This certification will ensure increase in the security level of the product.