The Common Criteria for Information Technology and Security Evaluation
are ISO standards for specifying security requirements and defining evaluation criteria.

Question

Quizplus · Accepted Answer

The statement is true, as the Common Criteria (CC) is an international standard (ISO/IEC 15408) used for evaluating the security features and capabilities of IT products and systems. It provides a framework for defining security requirements, specifying evaluation criteria, and assessing the security of a given product or system. CC is widely recognized and adopted by governments and organizations worldwide to ensure the security of their IT infrastructures and protect against cyber threats.