International Standard
ISO/IEC 15408-1:2026
Information security, cybersecurity and privacy protection — Evaluation criteria for IT security — Part 1: Introduction and general model
Reference number
ISO/IEC 15408-1:2026
Edition 5
2026-05
© ISO 2026
Read sample
Published (Edition 5, 2026)

ISO/IEC 15408-1:2026

Language
Format
CHF 0
* Shipping costs not included

Abstract

This document establishes the general concepts and principles of information technology (IT) security evaluation. It specifies the general model of evaluation given in this document, which in its entirety is intended to be used as the basis for evaluation of security properties of IT products.

This document provides an overview of all parts of the ISO/IEC 15408 series. It describes the various parts of the ISO/IEC 15408 series i.e.

  • defines the terms and abbreviations used in all parts of the series; establishes the core concept of a Target of Evaluation (TOE);
  • describes the evaluation context; and
  • describes the audience to which the evaluation criteria is addressed.

Additionally, this document introduces the basic security concepts necessary for the evaluation of IT products.

Buy together

Package - 10% discount
The complete ISO 27000 information security package

Empower your organization with robust information security standards

  • ISO/IEC 27000:2018
  • ISO/IEC 27001:2022
  • ISO/IEC 27002:2022
  • ISO/IEC 27005:2022
English | PDF
CHF 607CHF 546

General information

  • Status
     : Published
    Publication date
     : 2026-05
    Stage
    : International Standard published [60.60]
  • Edition
     : 5
    Number of pages
     : 138
  • Technical Committee :
    ISO/IEC JTC 1/SC 27
    ICS :
    35.030 
  • RSS updates

Life cycle

Got a question?

Check out our Help and Support

  2. Store
  3. Store
  4. ICS
  5. 35
  6. 35.030
  7. ISO/IEC 15408-1:2026