Skip to main content
Back

EVS-EN ISO/IEC 15408-4:2023

Information security, cybersecurity and privacy protection - Evaluation criteria for IT security - Part 4: Framework for the specification of evaluation methods and activities (ISO/IEC 15408-4:2022)

General information

Valid from 15.12.2023
Base Documents
ISO/IEC 15408-4:2022; EN ISO/IEC 15408-4:2023
Directives or regulations
None

Standard history

Status
Date
Type
Name
Main
prEN ISO/IEC 15408-4
15.12.2023
Main
The ISO/IEC 15408 series permits comparability between the results of independent security evaluations. The ISO/IEC 15408 series does so by providing a common set of requirements for the security functionality of IT products and for assurance measures applied to these IT products during a security evaluation. ISO/IEC 18045 provides a companion methodology for some of the assurance requirements specified in the ISO/IEC 15408 series, ISO/IEC 15408-1 and ISO/IEC 18045 also allow that more specific Evaluation Activities (EAs) may be derived for use in particular evaluation contexts. Specification of such Evaluation Activities is already occurring amongst practitioners and this creates a need for a specification for defining such Evaluation Activities.
This document, ISO/IEC 15408-4, provides a standardised framework for specifying objective, repeatable and reproducible Evaluation Methods (EMs), and Evaluation Activities.

Required fields are indicated with *

*
*
*
PDF
19.52 € incl tax
Paper
19.52 € incl tax
Browse standard from 2.44 € incl tax
Standard monitoring

Customers who bought this item also bought

Main

EVS-EN ISO/IEC 29147:2020

Information technology - Security techniques - Vulnerability disclosure (ISO/IEC 29147:2018)
Newest version Valid from 15.06.2020
Main

EVS-EN ISO/IEC 15408-3:2023

Information security, cybersecurity and privacy protection - Evaluation criteria for IT security - Part 3: Security assurance components (ISO/IEC 15408-3:2022)
Newest version Valid from 15.12.2023
Main

EVS-EN ISO/IEC 15408-2:2023

Information security, cybersecurity and privacy protection - Evaluation criteria for IT security - Part 2: Security functional components (ISO/IEC 15408-2:2022)
Newest version Valid from 15.12.2023
Main

EVS-EN ISO/IEC 15408-1:2023

Information security, cybersecurity and privacy protection - Evaluation criteria for IT security - Part 1: Introduction and general model (ISO/IEC 15408-1:2022)
Newest version Valid from 15.12.2023