Which evaluation criteria document was the U.S. predecessor to the international Common Criteria?
A CISSP practice question covering Domain 3: Security Architecture and Engineering. Try answering before reading the explanation below.
Show options & answer
Why "TCSEC (Orange Book)" is the right answer
TCSEC (Trusted Computer System Evaluation Criteria, the Orange Book) was the U.S. DoD standard from 1983. ITSEC was the European counterpart. Common Criteria (ISO/IEC 15408) succeeded both. FIPS 140 evaluates crypto modules specifically.
Study videos for this topic
Want to go deeper on Domain 3? Watch the full breakdown — every video is free, no account, no upsell.
CISSP Domain 3: Bell-LaPadula vs Biba (No More Mix-Ups)
Domain 3 — Security Architecture and Engineering
CISSP Domain 3: TPM, Reference Monitor, and TCB
Domain 3 — Security Architecture and Engineering
CISSP Domain 3: Cloud, ICS, IoT & Container Vulnerabilities
Domain 3 — Security Architecture and Engineering
CISSP Crypto: Which Key for Privacy vs Signing?
Domain 3 — Security Architecture and Engineering
Take the full CISSP practice test
120 questions, instant explanations, study-video links on every miss. No account.