Apple software security certifications overview

Product certifications (Common Criteria ISO/IEC 15408)

Common Criteria (ISO/IEC 15408) is a standard that’s used by many organizations as a basis for performing security evaluations of IT products.

For certifications that may be mutually recognized under the international Common Criteria Recognition Arrangement (CCRA), see the Common Criteria Portal. The Common Criteria standard may also be used outside the CCRA by national and private validation schemes. In Europe, mutual recognition is governed under the SOG-IS agreement as well as the CCRA.

The goal, as stated by the Common Criteria community, is for an internationally approved set of security standards to provide a clear and reliable evaluation of the security capabilities of Information Technology products. By providing an independent assessment of a product’s ability to meet security standards, Common Criteria Certification gives customers more confidence in the security of Information Technology products and leads to more informed decisions.

Through the CCRA, member countries have agreed to recognize the certification of Information Technology products with the same level of confidence. Evaluations required before certification are extensive and include:

• Protection Profiles (PPs)

• Security Targets (STs)

• Security Functional Requirements (SFRs)

• Security Assurance Requirements (SARs)

• Evaluation Assurance Levels (EALs)

Protection Profiles (PPs) are documents that specify security requirements for a class of device types (such as Mobility) and are used to provide comparability between the evaluations of IT products within the same class. Membership of the CCRA, along with an increasing list of approved PPs, continues to grow on a yearly basis. This arrangement permits a product developer to pursue a single certification under any one of the certificate authorizing schemes and have it recognized by any of the certificate consuming signatories.

Security Targets (STs) define what will be evaluated when an IT product is being certified. The STs are translated to more specific Security Functional Requirements (SFRs), used for evaluating the STs in more detail.

The Common Criteria (CC) also includes Security Assurance Requirements. One commonly identified metric is the Evaluation Assurance Level (EAL). EALs group together frequently occurring sets of SARs and may be specified in PPs and STs to support comparability.

Many older PPs have been archived and are being replaced with targeted PPs, which are being developed and focus on specific solutions and environments. In a concerted effort to ensure continued mutual recognition across all CCRA members, international Technical Communities (iTCs) have been established to develop and maintain collaborative Protection Profiles (cPPs), which are developed from the start with involvement from CCRA signatory schemes. PPs targeted for user groups and mutual recognition arrangements other than the CCRA continue to be developed by appropriate stakeholders.

Apple began pursuing certifications under the updated CCRA with selected cPPs starting in early 2015. Since then, Apple has achieved Common Criteria certifications for each major iOS release and has expanded coverage to include the security assurance provided by new PPs.

Apple takes an active role within the technical communities focused on evaluating mobile security technologies. These include the iTCs responsible for developing and updating cPPs. Apple continues to evaluate and pursue certifications against current PPs and cPPs.

Apple platform certifications for the North America market are generally performed with the National Information Assurance Partnership (NIAP), which maintains a list of projects currently in evaluation but not yet certified.

In addition to the general platform certificates listed, other certificates have been issued in order to demonstrate specific security requirements for some markets.