CISSP Question #939: Real Exam Question with Answer & Explanation

The correct answer is B: Common Criteria (CC). Common Criteria (CC) is an internationally recognized standard for evaluating the security properties of information technology products and systems. The Common Criteria framework provides a comprehensive methodology for assessing the security features of products and systems, en

Submitted by asante_acc· Mar 5, 2026Security Assessment and Testing

Question

Which of the BEST internationally recognized standard for evaluating security products and systems?

Options

APayment Card Industry Data Security Standards (PCI-DSS)
BCommon Criteria (CC)
CHealth Insurance Portability and Accountability Act (HIPAA)
DSarbanes-Oxley (SOX)

Explanation

Common Criteria (CC) is an internationally recognized standard for evaluating the security properties of information technology products and systems. The Common Criteria framework provides a comprehensive methodology for assessing the security features of products and systems, ensuring that they meet specific security requirements. It is widely used by governments, organizations, and vendors worldwide to validate the security of systems before they are deployed in sensitive environments. Common Criteria evaluates products against predefined security standards and assurance levels, helping organizations make informed decisions about security product selection and deployment. The standard applies to a wide range of IT products, including operating systems, firewalls, and cryptographic modules.

Topics

#Common Criteria#security standards#product evaluation

Community Discussion

No community discussion yet for this question.

Full CISSP Practice Browse All CISSP Questions