NIAP: Archived U.S. Government Approved Protection Profile - U.S. Government Protection Profile Anti-Virus Applications for Worksta...

NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems
Questions?  We're here to help
  NIAP  »»  Protection Profiles  »»  Archived PPs  »»  Details  
Archived U.S. Government Approved Protection Profile - U.S. Government Protection Profile Anti-Virus Applications for Workstations in Basic Robustness Environments Version 1.2

Short Name: pp_av_br_v1.2

Technology Type: AntiVirus

CC Version: 3.1

Date: 2007.07.25

Preceded By: pp_av_br_v1.1

Sunset Date: 2011.06.01 [Sunset Icon]

Conformance Claim: EAL2 Augmented

Protection Profile [PDF]

Addendum [PDF]



This PP specifies the minimum-security requirements for Anti-Virus Applications (i.e., the Target of Evaluation (TOE)) used on workstations in the US Government in Basic Robustness Environments. The Anti-Virus Application provides protection against viruses coming into the workstation from network connections and/or removable media, and is considered sufficient protection for environments where the likelihood of an attempted compromise is low. The target robustness level of "basic" is discussed in Section 3.0 of this PP. STs claiming compliance may consist of software only.

The PP defines the requirements for a general-purpose Anti-Virus Application that may be used in a variety of systems. Relative to these requirements the PP includes:

  • Assumptions about the security aspects of the environment in which the TOE will be used;
  • Threats that are to be addressed by the TOE;
  • Security objectives of the TOE and its environment;
  • Functional and assurance requirements to meet those security objectives; and
  • Rationale demonstrating how the requirements meet the security objectives, and how the security objectives address the threats.


A Profile is intended to be generally applicable to products regardless of whether they are embedded, stand-alone, centralized, or distributed. However, based upon the results of numerous products trying to claim conformance to this PP, it was a security functional requirement did not support the stated applicability. The Errata Section identifies the area that has been identified as problematic for software vendors who are seeking conformance to this PP and clarifies the security function requirement in a manner that would allow a vendor to successfully achieve compliance. Software vendors who follow the guidance in this Errata Section will be able to successfully claim conformance to this PP, effective immediately.


Because a PP is written to be implementation-independent, there may be some ambiguities that do not arise until a specific implementation is being evaluated against it. When this happens, a resolution is established through the Observation Decision (OD) process in the form of a Precedent Decision (PD), which is to be used consistently in subsequent evaluations involving the PP in question. The Precedent Decisions specifically associated with this PP are listed below:

  • PD-0129: Deletion of the oldest audit events when audit storage space is exhausted
  • PD-0130: Clarification of Alert requirement in Basic Robustness Anti-Virus PP


July 25, 2007
Assurance maintenance has been performed on this protection profile to update it to the common criteria version 3.1. This update caused a change in version number (from 1.1 to 1.2) that indicates an update has occurred. The updates included revisions based on the assurance requirements of the CC 3.1, removal of FPT_SEP and FPT_RVM since it is now covered by ADV_ARC and replacement of Explicitly stated requirements with Extended requirements (only the nomenclature changed and not the requirements.)

This U.S. Government Approved Protection Profile is not assigned to any Validated Products

This U.S. Government Approved Protection Profile does not have any related Technical Decisions

Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).

Please forward any general questions to our Q&A tool.

Site Map              Contact Us              Home