lotus



previous page: 38  Who actually performs the evaluations? (Computer Security Evaluation)
  
page up: Computer Security Evaluation FAQ
  
next page: 40  What is RAMP? (Computer Security Evaluation)

39 What information is released about an evaluated product? (Computer Security Evaluation)




Description

This article is from the Computer Security Evaluation FAQ, by Trusted Product Evaluation Program TPEP@dockmaster.ncsc.mil.

39 What information is released about an evaluated product? (Computer Security Evaluation)

As we begin working with a product, the vendor and target
rating are made available. When that product is accepted into
evaluation, information such as the vendor, target rating, and
target completion date are announced in a product announcement
on the Evaluated Products List (EPL) (see Section V, Question
6). When the evaluation is completed the general evaluated
product configuration, general product information, and rating
are announced in an entry on the EPL. In addition at the
completion of evaluation a report is published (see Section V,
Question 7). This report contains the analysis of the
evaluation team, a complete description of the evaluated
product, and often comments about the usability of the product
in its evaluated configuration by the evaluation team. Recent
EPL entries and a few Final Evaluation Reports are available at
<http://www.radium.ncsc.mil/tpep/epl/>.

 

Continue to:













TOP
previous page: 38  Who actually performs the evaluations? (Computer Security Evaluation)
  
page up: Computer Security Evaluation FAQ
  
next page: 40  What is RAMP? (Computer Security Evaluation)