The Common Criteria for Information Technology Security Evaluation (abbreviated as Common Criteria or CC) is an international standard (ISO/IEC 15408) for computer security certification. It is currently in version 3.1.
Common Criteria is a framework in which computer system users can specify their security functional and assurance requirements, vendors can then implement and/or make claims about the security attributes of their products, and testing laboratories can evaluate the products to determine if they actually meet the claims. In other words, Common Criteria provides assurance that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous and standard manner.
Read more about Common Criteria: Key Concepts, History, Testing Organizations, Mutual Recognition Arrangement, List of Abbreviations, Alternative Approaches
Famous quotes containing the words common and/or criteria:
“Though there are wreck-masters appointed to look after valuable property which must be advertised, yet undoubtedly a great deal of value is secretly carried off. But are we not all wreckers contriving that some treasure may be washed up on our beach, that we may secure it, and do we not infer the habits of these Nauset and Barnegat wreckers, from the common modes of getting a living?”
—Henry David Thoreau (1817–1862)
“We should have learnt by now that laws and court decisions can only point the way. They can establish criteria of right and wrong. And they can provide a basis for rooting out the evils of bigotry and racism. But they cannot wipe away centuries of oppression and injustice—however much we might desire it.”
—Hubert H. Humphrey (1911–1978)