• e-mail print

ISO/IEC 15408-1:2005 

Information technology -- Security techniques -- Evaluation criteria for IT security -- Part 1: Introduction and general model

Note: The electronic version of this International Standard can be downloaded from the ISO/IEC Information Technology Task Force (ITTF) web site

General information

Number of Pages:


Edition: 2 (Monolingual) ICS: 35.040
Status: Withdrawn Stage: 95.99 (2009-12-03)
TC/SC: JTC 1/SC 27  

Abstract

ISO/IEC 15408-1:2005 defines two forms for expressing IT security functional and assurance requirements. The protection profile (PP) construct allows creation of generalized reusable sets of these security requirements. The PP can be used by prospective consumers for specification and identification of products with IT security features which will meet their needs. The security target (ST) expresses the security requirements and specifies the security functions for a particular product or system to be evaluated, called the target of evaluation (TOE). The ST is used by evaluators as the basis for evaluations conducted in accordance with ISO/IEC 15408.

Revision information

Revised by: ISO/IEC 15408-1:2009

Revises: ISO/IEC 15408-1:1999

Corrigenda, Amendments and other parts

ISO/IEC 15408-1:2009

ISO/IEC 15408-2:2008

ISO/IEC 15408-3:2008

These standards could also interest you

  • ISO/IEC 27003:2010
    Information technology -- Security techniques -- Information security management system implementation guidance
  • ISO/IEC 27033-1:2009
    Information technology -- Security techniques -- Network security -- Part 1: Overview and concepts
  • ISO/IEC 19792:2009
    Information technology -- Security techniques -- Security evaluation of biometrics
 
The following article has been added to your basket
Continue shopping  Proceed to checkout