Common Criteria (CC) is a global standard for assessing security features of IT products. It establishes two key components: Protection Profiles (PP) and Evaluation Assurance Levels (EAL). PPs define security requirements for a product category, while EALs measure the evaluation’s depth and rigor. The certification process includes security target preparation, laboratory evaluation, and certification issuance. The CC is internationally recognized under the Common Criteria Recognition Arrangement (CCRA), although the certification process can be costly and time-intensive. The criteria are continually evolving to meet growing cybersecurity threats.
Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Financial groups lay out a plan to fight AI identity
