"The Netherlands Scheme for Evaluation and Certification of IT security products"

Abstract:

Organizations are faced with a plethora of security product choices from which they have to select the best product for their security need. This leads to the need for security standards for product evaluation. The adoption of the ISO 15408 Common Criteria as a standard means of specifying and acquiring security related information technology products is actively promoted by the Dutch government. After a short retrospective of the evaluation criteria developments of the last years, and the Dutch participation therein, the presentation will explain the organization and procedures of the Netherlands Scheme for Evaluation and Certification of IT security products.