Scheme PublicationsThe NIAP CCEVS Validation Body will communicate to sponsors of evaluations, testing laboratories, government agencies, and the general public through a series of technical and administrative publications. The flagship document in the series is Scheme Publication #1, Common Criteria Evaluation and Validation Scheme for IT Security - Organization, Management, and Concept of Operations. Other publications provide guidance to sponsors of IT security evaluations, guidance to security testing laboratories, guidance on evaluating specific information technologies, guidance on employing and interpreting the Common Criteria and Common Evaluation Methodology, and guidance on protection profile and security target development. Additional information and guidance will be available on other important scheme topics such as technical oversight, validation, Common Criteria certificates and certificate maintenance. Comments on any scheme publication can be forwarded to the NIAP CCEVS Validation Body using the following email address: scheme-comments@niap-ccevs.org. CCEVS Guidance DocumentsThe Common Methodology for Information Technology Security Evaluation (CEM), upon which mutual recognition is based, currently includes only those CC components that constitute EAL4 and below, plus ALC_FLR. However, evaluations might also include additional assurance components. For those components, the following sets of guidance are offered by the CCEVS:
The CCEVS has also issued the following guidance: |
![[X]](/assets/images/button_close.gif){kind=small}