What does the Common Criteria (CC) standard define?
A.
The U S standards for encryptions export regulations.
B.
The current list of Common Vulnerabilities and Exposures (CVEs)
C.
The international standards for privacy laws.
D.
The standards for establishing a security incident response systems.
E.
Tools to support the development of pirvotal, forward-looking information system technologies.
F.
The international standards for evaluating trust in information systems and products.
Explanation:
The Common Criteria for Information Technology Security Evaluation (abbreviated as Common Criteria or CC) is an international standard (ISO/IEC 15408) for computer security. Unlike standards such as FIPS 140-2, Common Criteria does not provide a list of product security requirements or features that products must contain. Instead, it describes a framework in which computer system users can specify their security requirements, vendors can then implement and/or make claims about the security attributes of their products, and testing laboratories can evaluate the products to determine if they actually meet the claims. In other words, Common Criteria provides assurance that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous and standard manner.