Scheme Policy Letters

The following CCEVS guidance documents are currently available. Comments on any scheme publication can be forwarded to scheme-comments@niap-ccevs.org.

0 Current Policy Letters
#	Title	Date
This list was generated on Wednesday, February 08th, 2012 at 8:57PM
001	Language in STs, ETRs, VPL, & VRs	2010-01-12
004	Inactive Evaluations	2010-01-12
010	Acceptance of Security Targets (STs) Into NIAP CCEVS Evaluation	2010-01-22
011	Candidate CCTL Policy	2010-01-12
012	Acceptance Requirements of a Product for CCEVS Evaluation	2011-12-08
016	Validator Oversight Review (VOR) Scheduling Priorities	2010-01-12
017	Effects of Vulnerabilities in Evaluated Products	2010-01-12
018	Time Limits on CCEVS Evaluations	2010-01-12
020	NIAP policy for the use of IEEE Multifunction Function Device Protection Profiles (IEEE 2600.1 and IEEE 2600.2)	2010-11-15

3 Superseded or Outdated Policy Letters
#	Title	Date
This list was generated on Wednesday, February 08th, 2012 at 8:57PM
001	Language in STs, ETRs, VPL, & VRs	2002-01-10
002	Reuse of Previous Evaluation Results & Evidence	2002-03-04
003	Target of Evaluation Security Targets Claiming Conformance to Protection Profiles	2008-09-08
004	Inactive Evaluations Addendum #1 - What Constitutes Activity in an Evaluation? (Superceded by updated Policy Letter #4)	2008-09-08
005	Evaluation TOEs at Evaluated Assurance Levels (EALs) Above 4	2002-09-13
006	Location of CCTL Evaluation Testing Activities	2003-10-20
007	Evaluation Conflict of Interest	2004-11-22
008	Rules for Component Evaluations under CCEVS	2005-03-01
009	Crypto in Common Criteria Evaluations	2005-06-13
010	Acceptance of Security Targets (STs) Into NIAP CCEVS Evaluation	2008-09-08
011	Candidate CCTL Policy	2008-09-08
012	Letter of Intent (LOI) Requirement for Acceptance into CCEVS Evaluation	2009-10-01
013	Acceptable TOEs for Evaluation Addendum #1 - Clarification	2007-05-24
014	Requirements for Committing NSA Resources to CCEVS Evaluations Addendum #1 - NSA Vulnerability Analysis (VLA) Evaluation Process Overview for CCEVS Evaluations	2006-04-21
015	Mandatory Inclusion of Audit Generation Functionality in TOEs	2008-09-08
016	Validator Oversight Review (VOR) Scheduling Priorities	2007-12-05
017	Effects of Vulnerabilities in Evaluated Products	2008-01-23
018	Time Limits on CCEVS Evaluations	2008-02-04
019	Requirements for Evaluations with Components above Evaluated Assurance Level (EAL) 4	2008-09-08