John Morris, President, Corsec. When it comes to commercially-viable security assurance, there are few options that address all concerns. Traditional third-party assurance programs are slow to be defined, enforced, and are often costly for vendors to navigate. However, vendors are participating more and more frequently in several government-mandated efforts Mr. Morris will examine three of the most successful third-party assurance programs (FIPS 140-2, Common Criteria, and UC APL) and the benefits and drawbacks of the programs. John Morris will break down the vendor, government, and consumer experience with security accreditations and provide insight into the current and future directions of these programs.