This International Standard is a companion document to the evaluation criteria for IT security defined in ISO/IEC 15408. It defines the minimum actions to be performed by an evaluator in order to conduct anISO/IEC 15408 evaluation, using the criteria and evaluation evidence defined in ISO/IEC 15408.This International Standard does not define evaluator actions for certain high assurance ISO/IEC 15408components, where there is as yet no generally agreed guidance.
DS/ISO/IEC 18045:2008 history
2008DS/ISO/IEC 18045:2008 Information technology - Security techniques - Methodology for IT security evaluation