Common Criteria (CC) is an internationally recognized certification scheme that provides formal recognition that a product meets its Information Assurance (IA) requirements.
It provides assurance that a developer’s claims about the security features of their product are valid and have been independently tested against recognized criteria.
Products are tested against a protection profile which defines how they should operate. Products must either:
- Claim conformance to a collaborative protection profile
- Claim conformance to a UK endorsed national protection profile
- Be categorized under one of the SOG-IS IT technical domains, with the agreement of NCSC