Certified Ethical Hacker (CEH) — Question 40

What is the name of the international standard that establishes a baseline level of confidence in the security functionality of IT products by providing a set of requirements for evaluation?

Answer options

• A. Blue Book
• B. ISO 26029
• C. Common Criteria
• D. The Wassenaar Agreement

Correct answer: C

Explanation

The correct answer is Common Criteria, as it specifically provides a framework for evaluating security functionality in IT products. The Blue Book does not pertain to security standards, ISO 26029 is unrelated to IT security evaluations, and The Wassenaar Agreement focuses on export control rather than product evaluation.