Tony Apted, CCTL Technical Director, Leidos. Many Common Criteria Protection Profiles published or approved by NIAP specify cryptographic requirements. For CC evaluations within the US, where NIST provides validation testing of such requirements, they must be addressed through CAVP and/or CMVP certification. This presentation will discuss NIAP’s overall policy, examine specific requirements and how they are to be demonstrated through CAVP certification, and present issues and proposed solutions that can confront vendors seeking CC certification.

Common Criteria Track