<P> The Common Criteria for Information Technology Security Evaluation (abbreviated as Common Criteria or CC) is an international standard (ISO / IEC 15408) for computer security certification . It is currently in version 3.1 revision 5 . </P> <P> Common Criteria is a framework in which computer system users can specify their security functional and assurance requirements (SFRs and SARs respectively) in a Security Target (ST), and may be taken from Protection Profiles (PPs). Vendors can then implement and / or make claims about the security attributes of their products, and testing laboratories can evaluate the products to determine if they actually meet the claims . In other words, Common Criteria provides assurance that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous and standard and repeatable manner at a level that is commensurate with the target environment for use . </P>

What is another name for the iso/iec 15408 standard for computer security