Aspects of Common Criteria Certifications — this is the topic of the lecture that the experts of the SRC evaluation body for Common Criteria will address at the Vienna University of Technology. The lecture will take place on 10 May 2019 as part of the lecture IT Security in Large IT Infrastructures at the Institute of Information Systems Engineering.
Common Criteria in science
With the help of Common Criteria for Information Technology Security Evaluation (CC), IT products can be evaluated regarding their security according to general criteria. As an internationally recognised standard, Common Criteria is of interest to the scientific world. Initially, an evaluation is carried out by an evaluation body accredited by the German Federal Office for Information Security (BSI). SRC is accredited as such a CC evaluation body. The BSI then carries out the certification.
Guest lecture for students
The SRC experts will discuss the Aspects of Common Criteria Certifications at first hand. The lecture informs the students about the basic approach for product certifications according to Common Criteria. Infrastructures in the European Union that rely on Common Criteria certification will be highlighted. The formal side including the responsible certification and recognition bodies will also be considered. The comparison of Common Criteria with other concepts concludes the lecture. Certifications according to technical guidelines of the BSI, ISO27001 or the criteria of the Payment Card Industry (PCI) will be considered.