NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems

Short Name: pp_gpcp_v1.0

Technology Type: Hardware Platform and Components

CC Version: 3.1

Date: 2022.02.10

Conformance Claim: None

Protection Profile 

Control Mapping 

PP OVERVIEW

The scope of this Protection Profile (PP) is to describe the security functionality of General-Purpose Computing Platforms in terms of the Common Criteria and to define functional and assurance requirements for such products.

A platform is a collection of hardware devices and firmware that provide the functional capabilities and services needed by tenant software. Such components typically include embedded controllers, trusted platform modules, management controllers, host processors, network interface controllers, graphics processing units, flash memory, storage controllers, storage devices, boot firmware, runtime firmware, human interface devices, and a power supply.

This Protection Profile for General-Purpose Computing Platforms derives requirements from the following documents:

-NIAP, BIOS Update for PC Client Devices protection Profile, Version 1.0, 12 Feb 2013

-NIST SP 800-147 BIOS Protection Guidelines, April 2011

-NIST SP 800-147B BIOS Protection Guidelines for Servers, August 2014

-NIST SP 800-193 Platform Firmware Resiliency Guidelines

Additionally, the following specifications and standards may be relevant to requirements in this PP:

-NIST SP 800-155 (Draft) BIOS Integrity Measurement Guidelines (Draft), December 2011

-NIST SP 1800-34 (Draft) Validating the Integrity of Computing Devices (Preliminary Draft), 2021

-Trusted Computing Group, TCG PC Client Platform Firmware Integrity Measurement Version 1.0 Revision Specification 43 Family 2.0, May 7, 2021

-IEEE Std 802.1AR-2018, Secure Device Identity 

This U.S. Government Approved Protection Profile is not assigned to any Validated Products

This U.S. Government Approved Protection Profile does not have any related Technical Decisions