Publications

The member organisations of the CCRA declare that defined assurance levels (EALs) between versions of the criteria are equivalent and can therefore be used without restrictions for composition activities.


CC v3.1. Release 5

CC v3.1 Release 5 consists of three parts. Make sure to download and use these files:

PDF XML
Part 1: Introduction and general model CCPART1V3.1R5.pdf CC3R3.dtd
  CCPART1V3.1R5_marked_changes.pdf  
Part 2: Security functional requirements CCPART2V3.1R5.pdf cc3R5.XML.zip
  CCPART2V3.1R5_marked_changes.pdf  
Part 3: Security assurance requirements CCPART3V3.1R5.pdf  
  CCPART3V3.1R5_marked_changes.pdf  

CEM v3.1 consists of one part:
  PDF  
CEM CEMV3.1R5.pdf  
CEM CEMV3.1R5_marked_changes.pdf  
Addenda to the CC and CEM

CCDB-2017-05-17-CCaddenda-Exact_Conformance.pdf
 
 

CC v3.1. Release 4

CC v3.1 Release 4 consists of three parts. Make sure to download and use these files:

PDF XML
Part 1: Introduction and general model CCPART1V3.1R4.pdf CC3R3.dtd
  CCPART1V3.1R4_marked_changes.pdf  
Part 2: Security functional requirements CCPART2V3.1R4.pdf cc3R4.XML.zip
  CCPART2V3.1R4_marked_changes.pdf  
Part 3: Security assurance requirements CCPART3V3.1R4.pdf  
  CCPART3V3.1R4_marked_changes.pdf  

CEM v3.1 consists of one part:
  PDF  
CEM CEMV3.1R4.pdf  
CEM CEMV3.1R4_marked_changes.pdf  
Addenda to the CC and CEM

CCDB-2014-03-001-CCaddenda-Modular_PP.pdf
 
 

CC v3.1 Release 3

CC v3.1 consists of three parts. Make sure to download and use these files marked as "Final":

  PDF XML
Part 1: Introduction and general model CCPART1V3.1R3.pdf CC3R3.dtd
Part 2: Security functional requirements CCPART2V3.1R3.pdf cc3R3.XML.zip
  CCPART2V3.1R3 - marked changes.pdf  
Part 3: Security assurance requirements CCPART3V3.1R3.pdf  
  CCPART3V3.1R3 - marked changes.pdf  

CEM v3.1 consists of one part:
  PDF  
CEM CEMV3.1R3.pdf  
CEM CEMV3.1R3 - marked changes.pdf  

See the guides:



For previous versions of the CC and CEM please click here
For unofficial versions of the CC and CEM please click here


 

The following documents are CC Supporting Documents.  Supporting documents are used within the Common Criteria certification process to define how the criteria and evaluation methods are applied when certifying specific technologies.  They replace multiple individual interpretations and hence provide clarity for developers, evaluators, and users.  Their relevance and use for particular technologies is approved through an external approval process in which all CCRA members have input. 

There are two classes of CC Supporting documentation:

For more information see the CCRA Procedure for Supporting Documents.

CCRA Supporting Documents

Document Number Title
CCDB-2015-01-004 Full Drive Encryption: Encryption Engine
CCDB-2015-01-003 Full Drive Encryption: Authorization Acquisition
CCDB-2015-01-002 Evaluation Activities for Stateful Traffic
CCDB-2015-01-001 Evaluation Activities for Network Device cPP
CCDB-2008-09-002 Characterizing Attacks to Fingerprint Verification Mechanisms
Collection of Developer Evidence
2002-08-009 Reuse of Evaluation Results and Evidence
2012-06-01 Assurance Continuity
2004-07-001 Conducting Shadow Certifications
2005-06-021 Conducting Voluntary Periodic Assessments of Schemes Participating in the CCRA
CCDB-2006-04-004 ST sanitising for publication
CCDB-2007-11-001 Site Certification

Supporting Documents related to Smart Cards and similar devices

Document title Class
Rationale for Smart cards and similar devices
Guidance for smartcard evaluation v2.0 Guidance
Security Architecture requirements (ADV_ARC) for smart cards and similar devices Mandatory
Application of CC to Integrated Circuits v3.0 Mandatory
Composite product evaluation for Smartcards and similar devices Mandatory
ETR-template lite for composition Guidance
Security Architecture requirements (ADV_ARC) for smart cards and similar devices - Appendix 1 Guidance
Minimum ITSEF Requirements for Security Evaluations of Smart cards and similar devices Mandatory
Application of Attack Potential to Smartcards Mandatory