MRArecognition for components
centro criptologico nacional
CERTIFICATE
CCN-CC-41/2022
Microsoft Windows 11, WindowsServer 2022, and other Windows
OSes
Type of product Operating system
Conformanceof functionality PP Conformancefunctionality
Protection Profile Conformance Protection Profile for General Purpose Operating Systems(version 4.2.1),
Mobile Device Fundamentals Protection Extended Package (EP) Wireless
Local Area Network (WLAN) Clients (version 1.0), PP-Module for Virtual
Private Network (VPN) Clients (version 2.4)
Evaluation Facility DEKRATesting and Certification S.A.U.
Certification Report CCN-CC/2022-21/INF-3955
Expiration Date See Certification Report
Pursuantto the authority vested in me under Act 11/2002 regulating the National Intelligence Centre, and under
Article 1 and Article 2.2.c of Royal Decree 421/2004 of March 12th regulating the National Cryptologic Centre,|
hereby:
Certify that the security of Microsoft Windows 11, WindowsServer 2022, and other WindowsOSes, requested by
Microsoft Corporation, 1 Microsoft Way, Redmond, WA 98052 (U.S.A.), has been evaluated using Common
Methodologyfor Information Technology Security Evaluation/Common Criteria for Information Technology Security
Evaluation version 3.1 release 5, and it has met the requirements of its Security Target identified as “Microsoft
Windows, Windows Server, and Azure Stack Security Target (version 0.06, October 21, 2022)”, for evaluation
assurancelevel PP compliant.
Madrid, 12° December 2022
Secretary of State Director
ie
Esperanza Casteleiro Llamazares
a This certificate, its scope and validity are subject to the terms, conditions and requirements specified in the
ENAC “Reglamento de Evaluación y Certificación de la Seguridad delas T.1.C.” at PRE/2740/2007, September 19th.
CERTIFICACIÓN
180 17065
N°45/C-PRIIO
The above-mentionedSecurity Target and Certification Report are available at the National Cryptologic Centre.
CCRArecognition for components
up to EAL 4 and ALC_FLR only up to EAL 2 and ALC_FLR only
This certificate will come into effect the following day that the associated certificate resolution signed by the
Secretary of State Director of CCNis published in the Official State Gazette (B.O.E — https://www.boe.es).
The IT productidentified in this certificate has been evaluated at an accredited and licensed/approved evaluation
facility using the Common Methodology for Information Technology Security Evaluation/CommonCriteria for
Information Technology Security Evaluation version 3.1 release 5 and CC Supporting Documents aslisted in the
Certification Report. This certificate applies only to the specific version and release of the productin its evaluated
configuration and in conjunction with the complete Certification Report. The evaluation has been conductedin
accordance with the provisions of the Spanish IT Security Evaluation and Certification Scheme, PRE/2740/2007
Septemberthe 19th, and the conclusions of the evaluationfacility in the evaluation technical report are consistent
with the evidence adduced.This certificate is not an endorsementof the IT product by the Spanish Scheme or by
any other organisation that recognises or gives effect to this certificate, and no warranty of the IT product by the
Spanish Schemeor by any otherorganisation that recognises or gives effect to this certificate, is either expressed or
implied.