Reference document

Org
ISO/IEC
Pubnum
15408
Date
2005
Version
Title
Security Techniques - Evaluation criteria for IT security:2009

Applicability

The ITSEC document defines the assurance criteria against which a system or a product will be evaluated. These criteria are grouped and rated from E1 to E6 and permit to estimate the confidence in the correctness and the effectiveness of the security functions, which enforce maintenance of confidentiality, integrity and availability. The declared goals for the Common Criteria (CC) are

  • to be the vehicle by which North American and European authors of existing criteria (i.e. ITSEC, CTCPEC, Federal Criteria and TCSEC) present aligned criteria for the evaluation of IT security properties;
  • to form an input to the activities leading to the construction and adoption of international standards for IT security evaluation;
  • to preserve vendor and user investment in existing criteria following adoption of a unified international standard based on the CC;
  • to facilitate the development of an international market in IT security products through mutual recognition of both requirements and evaluations ;
  • to be extensible so that other interest groups may contribute to and benefit from the aligned criteria ;
  • to incorporate advances in IT security technology which have taken place since publication of existing standards and to improve the utility of the criteria.

Responsible Party

Name
DPC CaP/4

Status

URI

History

Flag Date RFC Version
added 1998-11-11 0.1
changed 2000-07-17 0.2
changed 2003-09-12 0.5
changed 2005-09-23 0.7
changed 2007-07-27 2
changed 2010-08-09 5
changed 2010-11-01 5
changed 2017-01-14 9-19 10
changed 2022-12-20 14-62 15
changed 2023-03-23 14-73 15
UUID
3acfa321-7c88-46a1-9774-cc3d292e9d5d

Relationships

This standard is used by the following service profiles:

Last updated on Fri, 12 Apr 2024 12:37:50 UTC
This page is work in progress