Introduction
From the CCDB-established Working Group, the iTC for Application Software (AppSW-iTC for short) was formed. The AppSW-iTC consists of members of Certification Bodies, labs and vendors working together to create requirements for application security testing.
To join the AppSW-iTC, please send a message to: cm-itc-mailing-list@gmail.com
Current Status
The AppSW-iTC has published the version 1.0e Public Release of the collaborative Protection Profile (cPP) and Supporting Document (SD) as of February 15th, 2024.
+----------+ +----------+ +----------+ +----------+ +----------+ +----------+
| | | | | Public | | cYEL | | | | |
| Internal | | Public | | Review | | Proposed | | Proposed | | Final |
| Draft |-->| Review |-->| Draft 1 |-->| Draft |-->| Update |-->| Document |
| | | Draft 1 | | Update | | | | | | Published|
| | | (45d) | | (60d) | | (30d) | | (10d) | | |
+----------+ +----------+ +----------+ +----------+ +----------+ +----------+
The [Current Documents for Review] section provides links to the documents under review.
Current Published Documents
Version 1.0e
- Publication Date
-
February 15, 2024
- Sunset Date
-
Active
- Retired Date
-
Active
The following are the documents are included in Version 1.0e:
| Title | Version | Links | Latest TD Version | Links |
|---|---|---|---|---|
collaborative Protection Profile for Application Software - [cPP_APP_SW] |
1.0e |
|
||
Supporting Document Mandatory Technical Document: Evaluation Activities for collaborative Protection Profile for Application Software - [SD_APP_SW] |
1.0e |
|
||
collaborative Protection Profile for Application Software - Allowed With List |
1.0e |
|
||
collaborative PP-Module for Server Applications [MOD_Server] |
1.0e |
|
||
Supporting Document Mandatory Technical Document: Evaluation Activities for collaborative Protection Profile Module for Server Applications [SD_MOD_Server] |
1.0e |
|
||
PP-Configuration for Enterprise Server Applications [cPP + MOD_Server] |
1.0e |
|
||
collaborative PP-Module for Agent Applications [MOD_Agent] |
1.0e |
|
||
Supporting Document Mandatory Technical Document: Evaluation Activities for collaborative Protection Profile Module for Agent Applications [SD_MOD_Agent] |
1.0e |
|
||
PP-Configuration for Enterprise Server Applications and Client Agent(s) [cPP + MOD_Server + MOD_Agent] |
1.0e |
|
| Title | Link |
|---|---|
cPP + Modules V1.0e Release package |
|
Version 1.0
- Publication Date
-
April 6, 2022
- Sunset Date
-
Active
- Retired Date
-
Active
The following are the documents are included in Version 1.0:
| Title | Version | Links | Latest TD Version | Links |
|---|---|---|---|---|
collaborative Protection Profile for Application Software - [cPP_APP_SW] |
1.0 |
|
||
Supporting Document Mandatory Technical Document: Evaluation Activities for collaborative Protection Profile for Application Software - [SD_APP_SW] |
1.0 |
|
||
collaborative Protection Profile for Application Software - Allowed With List |
1.0 |
|
||
collaborative PP-Module for Server Applications [MOD_Server] |
1.0 |
|
||
Supporting Document Mandatory Technical Document: Evaluation Activities for collaborative Protection Profile Module for Server Applications [SD_MOD_Server] |
1.0 |
|
||
PP-Configuration for Enterprise Server Applications [cPP + MOD_Server] |
1.0 |
|
||
collaborative PP-Module for Agent Applications [MOD_Agent] |
1.0 |
|
||
Supporting Document Mandatory Technical Document: Evaluation Activities for collaborative Protection Profile Module for Agent Applications [SD_MOD_Agent] |
1.0 |
|
||
PP-Configuration for Enterprise Server Applications and Client Agent(s) [cPP + MOD_Server + MOD_Agent] |
1.0 |
|
| Title | Link |
|---|---|
cPP + Modules V1.0 Release package |
|
Technical Decisions
Technical Decisions produced by the AppSW-iTC be found at the AppSW-iTC Technical Decisions page.