|
NIST | Security Controls | ISO/IEC15408 Common Criteria Component or Family |
|
AC-21 | Information Sharing | FPT_TDC.1 |
|
AC-22 | Publicly Accessible Content | FPT_TDC.1 |
|
AC-23 | Data Mining Protection | FTA_LSA.1 |
|
AU-13 | Monitoring for Information Disclosure | FAU_SAR.1, FDP_ETC.1 |
|
AU-16 | Cross-Organizational Auditing | FAU_SAR.1 |
|
CM-2 | Baseline Configuration | EAL package |
|
IA-3 | Device Identification and Authentication | FIA_UAU.1, FIA_UAU.2, FIA_UAU.1, FIA_UAU.2 |
|
IA-9 | Service Identification and Authentication | FIA_UAU.1, FIA_UAU.2, FIA_UAU.1, FIA_UAU.2 |
|
IA-10 | Adaptive Identification and Authentication | FIA_UAU.1, FIA_UAU.2, FIA_UAU.1, FIA_UAU.2 |
|
MP-8 | Media Downgrading | ALC_CMC, ALC_CMS |
|
PE-6 | Monitoring Physical Access | FPT_PHP.1, FPT_PHP.2, FPT_PHP.3 |
|
PE-8 | Visitor Access Records | ALC_DVS |
|
PS-2 | Position Risk Designation | FPT_PHP.1, FPT_PHP.2, FPT_PHP.3 |
|
RA-6 | Technical Surveillance Countermeasures Survey | AVA_VAN |
|
SA-2 | Allocation of Resources | FRU_RSA |
|
SA-13 | Trustworthiness | EAL package |
|
SA-16 | Developer-Provided Training | ALC_DVS |
|
SA-20 | Customized Development of Critical Components | ALC_CMC, ALC_CMS |
|
SC-2 | Application Partitioning | FIA_ATD.1 |
|
SC-18 | Mobile Code | FMT_MSA.1, FMT_MSA.2 |
|
SC-19 | Voice Over Internet Protocol | FMT_MSA.1, FMT_MSA.2 |
|
SC-20 | Secure Name/Address Resolution Service (Authoritative Source) | FMT_MSA.1, FMT_MSA.2 |
|
SC-21 | Secure Name/Address Resolution Service (Recursive or Caching Resolver) | FMT_MSA.1, FMT_MSA.2 |
|
SC-22 | Architecture and Provisioning for Name/Address Resolution Service | FMT_MSA.1, FMT_MSA.2 |
|
SC-29 | Heterogeneity | FDP_IFF |
|
SC-32 | Information System Partitioning | ADV_ARC |
|
SC-37 | Out-of-Band Channels | FPT_PHP.1, FPT_PHP.2, FPT_PHP.3 |
|
SC-39 | Process Isolation | ADV_ARC |
|
SC-42 | Sensor Capability and Data | FDP_ETC.1, FDP_ETC.2 |
|
SC-43 | Usage Restrictions | FDP_IFF.3 |
|
SI-8 | Spam Protection | FDP_ACC.1, FDP_ACC.2 FDP_IFC.1,FDP_IFC.2 |
|
SI-11 | Error Handling | FDP_ACC.1, FDP_ACC.2, FIA_AFL.1 |
|
SI-15 | Information Output Filtering | FDP_ACC.1, FDP_ACC.2 FDP_IFC.1,FDP_IFC.2 |
|
SI-16 | Memory Protection | ADV_ARC |
|
SI-17 | Fail-Safe Procedures | FPT_RCV, ADV_ARC |
|