NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems
|
|
|
U.S. Government Approved Protection Profile - Protection Profile for Application Software Version 1.4
Short Name:
pp_app_v1.4
Technology Type:
Application Software
CC Version:
3.1
Date:
2021.10.18
Transition End Date:
2022.04.18
Preceded By:
pp_app_v1.3
Conformance Claim:
None
Protection Profile
Protection Profile
Extended Component Definitions
Control Mapping
PP OVERVIEW
The scope of this Protection Profile (PP) is to describe the security functionality of application software in terms of [CC] and to define functional and assurance requirements for such software. In recent years, software attacks have shifted from targeting operating systems to targeting applications. This has been the natural response to improvements in operating system security and development processes. As a result, it is paramount that the security of applications be improved to reduce the risk of compromise.
SECURITY EVALUATION SUMMARY
The requirements in this document apply to application software which runs on any type of platform. Some application types are covered by more specific PPs, which may be expressed as PP-Modules of this PP. Such applications are subject to the requirements of both this PP and the PP-Module that addresses their special functionality. PPs for some particularly specialized applications may not be expressed as PP-Modules at this time, though the requirements in this document should be seen as objectives for those highly specialized applications.
Assigned to the following Validated Products
Active Related Technical Decisions
Archived Related Technical Decisions
|