The Common Criteria is the ISO/IEC 15408 international standard for Information Technology Security Evaluation. The associated methodology for the application of the Common Criteria (CC) is defined in a separate document Common Methodology for Information Technology: Evaluation Methodology (CEM), reflected in the international standard ISO/IEC 18045.
Originally developed in co-operation between international standardization and security bodies in Canada, France, Germany, Great Britain, Netherlands and the US, the objective was to replace national methods for security evaluation with a standard that could be applied and recognized internationally, hence the name.
The resulting Common Criteria is a set of common requirements and methodology that enables the security properties of IT-products and systems to be evaluated against known specified requirements on a product or category of products.
Flexible and globally recognised, it is the basis for many security certification schemes in the IoT domain, both the regulated certification scheme sector and as industry specific schemes. TrustCB provides accredited certification activities for a number of these certification schemes, enabling developers to demonstrate the security assurance of their IoT product.