Superseded
Standard
Historical
ISO/IEC 15408-5:2022
ISO/IEC 15408-5:2022 Information security, cybersecurity and privacy protection - Evaluation criteria for IT security - Part 5: Pre-defined packages of security requirements
Summary
This document provides packages of security assurance and security functional requirements that have been identified as useful in support of common usage by stakeholders.
EXAMPLE Examples of provided packages include the evaluation assurance levels (EAL) and the composed assurance packages (CAPs).
This document presents:
— _evaluation assurance level (EAL)_ family of packages that specify pre-defined sets of security assurance components that may be referenced in PPs and STs and which specify appropriate security assurances to be provided during an evaluation of a target of evaluation (TOE);
— _composition assurance (CAP)_ family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during an evaluation of composed TOEs;
— _composite product (COMP)_ package that specifies a set of security assurance components used for specifying appropriate security assurances to be provided during an evaluation of a composite product TOEs;
— _protection profile assurance_ _(PPA)_ family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during a protection profile evaluation;
— _security target assurance_ _(STA)_ family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during a security target evaluation.
The users of this document can include consumers, developers, and evaluators of secure IT products.
EXAMPLE Examples of provided packages include the evaluation assurance levels (EAL) and the composed assurance packages (CAPs).
This document presents:
— _evaluation assurance level (EAL)_ family of packages that specify pre-defined sets of security assurance components that may be referenced in PPs and STs and which specify appropriate security assurances to be provided during an evaluation of a target of evaluation (TOE);
— _composition assurance (CAP)_ family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during an evaluation of composed TOEs;
— _composite product (COMP)_ package that specifies a set of security assurance components used for specifying appropriate security assurances to be provided during an evaluation of a composite product TOEs;
— _protection profile assurance_ _(PPA)_ family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during a protection profile evaluation;
— _security target assurance_ _(STA)_ family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during a security target evaluation.
The users of this document can include consumers, developers, and evaluators of secure IT products.
Technical characteristics
| Publisher | International Electrotechnical Commission (IEC) |
| Publication Date | 08/09/2022 |
| Release Date | 08/09/2022 |
| Cancellation Date | 04/28/2026 |
| Edition | 1 |
| Page Count | 27 |
| EAN | --- |
| ISBN | --- |
| Weight (in grams) | --- |
No products.
Previous versions
No products.