Council recommendation on common information technology security evaluation criteria
The Council has published its recommendation of 7 April 1995 on common information technology security evaluation criteria. In doing so, it recommends the following: - The application of the information technology security evaluation criteria (ITSEC) within evaluation and certification schemes for an initial period of two years, to meet immediate evaluation and certification needs in connection with the trade and use of information technology products, systems and services; - Advancing, under the auspices of the Senior Officials Group on the Security of Information Systems (SOG-IS), the international harmonization and standardization of information technology security evaluation criteria; - The negotiation by the Member States of bilateral and preferably European or international mutual recognition of security evaluation certificates; - Reviewing developments and proposing appropriate actions in the light of experience and the results of international harmonization.