January 5, 2009
The holidays have finally come and gone and I can get back to studying. I found an interesting website via the Comptia Security+ Study Guide called http://www.commoncriteriaportal.org/index.html.
The website is the basis for the new standards for computer security.
Seven levels are broken down into Evaluation Assurance Levels (EALs)
EAL1 — is the bare minimum that a system will operate correctly but threats to security are not viewed as serious.
EAL4 — is the benchmark for commercial systems.
EAL7 — is intended for extremely high levels of security
Just for reference Windows Vista is ranked as EAL1: http://www.commoncriteriaportal.org/products_OS.html#OS