Abbreviations and References (UKSP00) Provides a list of References &
Abbreviations that may be found within Scheme Documentation.
58k
CCRA - Common Criteria Recognition Arrangement The purpose of this Arrangement is
to bring about a situation in which IT products and protection
profiles which earn a Common Criteria certificate can be procured
or used without the need for further evaluation.
435k
CLEF Requirements Part I - Start Up and Operation
(UKSP02 Part I) Covers,
in detail, the appointment and operation of CLEFs for the UK
ITSEC scheme. Includes the following headings: Setting up a
CLEF; Appointment & Assessment for New CLEFs and CLEF operation.
146k
CLEF Requirements Part II- Conduct of an Evaluation
(UKSP02 Part II) Covers
CLEF organization, preparation, conduct and conclusion phases
of an evaluation.
88k
Collection of Developer Evidence The objective of this document
is to facilitate effective and flexible application of the Criteria.
There is considerable flexibility in the form in which developers
may supply deliverables as inputs to evaluation. This interpretation
examines some of the alternatives that the developer may choose
and the ways in which the evaluator may respond. Version 1.0
August 2000.
25k
Common Criteria Certification This
guide is intended as an introductory overview to Certification
in the UK against Common Criteria.
1328k
Common Criteria, an Introduction The
Common Criteria represents the outcome of efforts to develop
criteria for evaluation of IT security that are widely useful
within the international community.
552k
Controlled Access Protection Profile Version 1.d Certification awarded October 1999
Protection Profile NoPP006.
370k
Description of the scheme - UKSP01 Provides a complete overall description
of the UK Scheme.
79k
Labeled Security Protection Profile Version 1.b Certification awarded October
1999 Protection Profile NoPP007.
426k
Mobile Code Authentication Draft Protection Profile for comment.
93k
Mobile Code Isolation Draft Protection
Profile for comment.
80k
Mobile Code Quarantine Draft Protection Profile for comment.
87k
Mutual Recognition Agreement of IT Security Evaluation
Certificates Version 2.0.April 1999 This document supersedes
document 017/97 Finally approved by Senior Officials Group Information
Systems Security of the European Commission at their meeting
on 26 November 1997. This document details the agreement by
which products or systems awarded an IT Security Evaluation
Certificate in one country can be used by parties in other countries
without the need for them to be evaluated and certified again.
108k
Oracle Database Management System Certification
awarded May 2000 Protection Profile NoPP008.
Requirement to perform Integrated Circuit Evaluations This describes the minimun set of
capabilities that an ITSEF must possess to carry out hardware
testing. Version 1.1 July 2003.
43k
Requirement to perform Integrated Circuit EvaluationsAnnex
A Examples of Smartcard Specific Attacks This annex provides some
examples of attacks that an ITSEF should be able to execute
during the evaluation of an integrated circuit. Version 1.1
July 2003.
56k
Role-Based Access Control Protection Profile Version
1.0 Certification awarded September
1998 Protection Profile NoPP001.
55k
Security Evaluation and Certification of Digital Tachographs The European Union has issued a Directive
concerning the application of EEC Regulations on recording equipment
used in road transport. These require the security features
of the Digital Tachograph to be evaluated and certified against
ITSEC. This paper provides guidance for those who wish to use
Common Criteria as an alternative to ITSEC and also clarifies
a number of other issues. Revised version 1.12 June 2003.
163k
Security Evaluation for IT Products An introduction to the benefits
and procedures of UK ITSEC certification.
387k
Sponsor's Guide (Role of Sponsor in IT Security
Evaluation and Certification) UKSP03 Covers a broad spectrum
of issues concerning the Sponsor and the UK Scheme. Subjects
include: Features and Benefits of the Scheme; Concepts of
Security Evaluation; Roles and Responsibilities of Sponsors;
Evaluation Preparation & Timescales and Project Management
Issues. Some aspects also affect Developers.
This CESG
Website is maintained for your personal use and viewing. Access and use
by you of this site constitutes acceptance of our terms and conditions which
take effect from the date of first use. Click
here for our terms and conditions
