The Common Criteria (ISO/IEC 15408) is the global applied standard for IT security product evaluation. It provides the grounds for confidence in IT security through actions taken during the processes of developing, evaluating and operating products and systems. Evaluation Assurance Level (EAL 1-7) is defined to determine the security level of IT security products.

• „¯Smart Cards and Smart Cards related devices and systems (chips, operating
      systems, applications and card readers, etc.)
• „¯Networks and Networks Security related devices and systems (Firewalls, wireless
      adaptors, wireless access points, trusted platform modules, public key
      infrastructure, virtual private network, intrusion detection system/intrusion
      protection system, etc.)
• „¯Others (Access Control Devices and Systems, Digital Signature Devices and
      Systems, Databases, and Operating Systems, etc.)

1. The developer proposes the target and the level to be evaluated, and sends the application to the Evaluation Body (EB).
„¯
2. The developer, together with the EB and the Certification Body (CB) confirm the evaluation target and the level to be achieved.
„¯
3. The EB evaluates the product and the development documents provided by the developer, and sends the evaluation result to the CB.
„¯
4. The CB certifies the product.
5. The CB announces the final result.

• Increase the product competitiveness in the global market.
„¯
• Establish the brand image.
„¯
• Certified product will be more trusted and preferred in the global government purchases.
• Ensure the operational security of the product in its life cycle.

¡@

¡@