Draft
International Standard
ISO/IEC DIS 15408-5
Information security, cybersecurity and privacy protection — Evaluation criteria for IT security — Part 5: Pre-defined packages of security requirements
Reference number
ISO/IEC DIS 15408-5
Edition 2
Draft International Standard
Read sample
ISO/IEC DIS 15408-5
88140
This Draft International Standard is in the enquiry phase with ISO members.
Will replace ISO/IEC 15408-5:2022

ISO/IEC DIS 15408-5

ISO/IEC DIS 15408-5
88140
Language
Format
CHF 63
Convert Swiss francs (CHF) to your currency

Abstract

This document provides packages of security assurance and security functional requirements that have been identified as useful in support of common usage by stakeholders.

EXAMPLE        Examples of provided packages include the evaluation assurance levels (EAL) and the composed assurance packages (CAPs).

This document presents:

—    evaluation assurance level (EAL) family of packages that specify pre-defined sets of security assurance components that may be referenced in PPs and STs and which specify appropriate security assurances to be provided during an evaluation of a target of evaluation (TOE);

—    composition assurance (CAP) family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during an evaluation of composed TOEs;

—    composite product (COMP) package that specifies a set of security assurance components used for specifying appropriate security assurances to be provided during an evaluation of a composite product TOEs;

—    protection profile assurance (PPA) family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during a protection profile evaluation;

—    security target assurance (STA) family of packages that specify sets of security assurance components used for specifying appropriate security assurances to be provided during a security target evaluation.

The users of this document can include consumers, developers, and evaluators of secure IT products.

General information

  •  : Under development

    You can help develop this draft international standard by contacting your national member

    : DIS ballot initiated: 12 weeks [40.20]
  •  : 2
     : 26
  • ISO/IEC JTC 1/SC 27
    35.030 
  • RSS updates

Got a question?

Check out our Help and Support