ISO/IEC 18045:2008 Preview
Information technology -- Security techniques -- Methodology for IT security evaluation
This standard was last reviewed and confirmed in 2014. Therefore this version remains current.
The electronic version of this International Standard can be downloaded from the ISO/IEC Information Technology Task Force (ITTF) web site
ISO/IEC 18045:2008 is a companion document to ISO/IEC 15408, Information technology - Security techniques - Evaluation criteria for IT security. ISO/IEC 18045:2008 defines the minimum actions to be performed by an evaluator in order to conduct an ISO/IEC 15408 evaluation, using the criteria and evaluation evidence defined in ISO/IEC 15408. ISO/IEC 18045:2008 does not define evaluator actions for certain high assurance ISO/IEC 15408 components, where there is as yet no generally agreed guidance.