
Standard ISO/IEC 15408, CC v3.1. Release 4
- ISO/IEC 15408-1, Information technology – Security techniques – Evaluation criteria for IT security – Introduction and general model
- ISO/IEC 15408-2, Information technology – Security techniques – Evaluation criteria for IT security – Security functional components
- ISO/IEC 15408-3, Information technology – Security techniques – Evaluation criteria for IT security – Security assurance components
Supplementary documentation
1. Security evaluation methodology CEM
Common Methodology for Information Technology Security Evaluation (Version 3.1, Revision 4) Evaluation Methodology, CCMB, September 2012.
2. Guidelines for developer documentation
Guidelines for developer documentation according to Common Criteria Version 3.1, BSI (Bundesamt für Sicherheit in der Informationstechnik), 2007.
www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/...
3. Guide for the production of ST and PP documents
ISO/IEC TR 15446 – Information technology – security techniques – guide for the production of Protection Profiles and Security Targets, JTC 1/SC27, Berlin 2009.
www.iso.org/iso/home/store/catalogue_tc/catalogue_detail.htm?csnumber=44715
4. ST/PP guide (according to the BSI evaluation scheme)
The PP/ST guide, Version 2, Revision 0, BSI (Bundesamt für Sicherheit in der Informationstechnik), August 2010.
www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_41_BSI_PP_ST_Guide_pdf.pdf
5. Guidelines for evaluation reports according to Common Criteria (obligatory within the BSI evaluation scheme)
Guidelines for evaluation reports according to Common Criteria Version 3.1, Version 2.00 for CCv3.1 rev. 3, BSI (Bundesamt für Sicherheit in der Informationstechnik), 2010.
www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Interpretationen/AIS_14_Guidelines_for_Evaluation Reports_Version_2_0_e_pdf.pdf