What Is Common Criteria Certification?
Common Criteria is the model that governments use as a certification scheme for the products they choose to use in government agencies and critical infrastructure. Many enterprises also use Common Criteria in their software selection process because of the quality that Common Criteria Certification guarantees.
The Common Criteria Recognition Arrangement (CCRA) is defined in The Common Criteria for Information Technology Security Evaluation and the Common Methodology for Information Technology Security Evaluation (CEM). These are very generic standards and do not guarantee security.
However, a Common Criteria Certification can make sure that the security claims of a vendor were evaluated independently.
CC certification makes products that have been evaluated available to a wider group of users, ensures that product lives up to the vendor's claims, and removes the burden and cost of evaluating software from software customers.