In information security, the term assurance means the level of trust or the degree of confidence in the satisfaction of security needs. There are many standards and guidelines published by the government and commercial organizations to evaluate the assurance aspects of computer systems.
Common Criteria (CC) is an assurance framework that is predominantly derived from the following three country specific standards:
CC basically defines a Protection Profile (PP) for computing systems.
The following are some of the concepts pertaining to CC: