MRA recognitio! for components CCRArecognition for components
up to EAL 4 and ALC_FLRonly up to EAL 2 and ALC_FLR only
A
centro criptoldgico nacional
CERTIFICATE
CCN-CC-33/2023
Microsoft Windows11 (version 22H2), Microsoft Windows10 (version
22H2), Microsoft Windows Server 2022, Microsoft WindowsServer
Datacenter: Azure Edition, Microsoft Azure Stack HClv2 version 22H2,
Microsoft Azure Stack Hub and Microsoft Azure Stack Edge
Type of product Operating system
Conformanceof functionality PP Conformancefunctionality
Protection Profile Conformance Protection Profile for General Purpose Operating Systems (v4.2.1), PP-
ModuleforVirtual Private Network (VPN) Clients (v2.4), PP-Module for
Bluetooth (v1.0)
Evaluation Facility DEKRA Testing and Certification S.A.U.
Certification Report CCN-CC/2023-08/INF-4178
Expiration Date See Certification Report
Pursuantto the authority vested in me under Act 11/2002 regulating the National Intelligence Centre, and under
Article 1 and Article 2.2.c of Royal Decree 421/2004 of March 12th regulating the National Cryptologic Centre,|
hereby:
Certify that the security of Microsoft Windows 11 (version 22H2), Microsoft Windows 10 (version 22H2), Microsoft
WindowsServer 2022, Microsoft Windows Server Datacenter: Azure Edition, Microsoft Azure Stack HClv2 version
22H2, Microsoft Azure Stack Hub and Microsoft Azure Stack Edge, requested by Microsoft Corporation, 1 Microsoft
Way, Redmond, WA 98052, U.S.A., has been evaluated using Common Methodology for Information Technology
Security Evaluation/CommonCriteria for Information Technology Security Evaluation version 3.1 release 5, and it
has met the requirements of its Security Target identified as “Microsoft Windows 11 (version 22H2), Microsoft
Windows10 (version 22H2), Microsoft WindowsServer 2022, Microsoft WindowsServer Datacenter: Azure Edition,
Microsoft Azure Stack HClv2 version 22H2, Microsoft Azure Stack Hub and Microsoft Azure Stack Edge Security
Target (version: 0.04, 03/07/2023)”, for evaluation assurance level PP compliant.
Madrid, 13 November 2023
Secretary of State Director
UU
Esperanza Casteleiro Llamazares
This certificate, its scope and validity are subject to the terms, conditions and requirements specified in the “Reglamento de
Evaluación y Certificación de la Seguridad de las T.I.C.” at PRE/2740/2007, September19th.
ENAC
CERTIFICACIÓN
180 17065
1N%45/ C-PRTIO
The above-mentioned Security Target and Certification Report are available at the National Cryptologic Centre.
This certificate will come into effect the following day that the associated certificate resolution signed by the
Secretary of State Director of CCNis published in the Official State Gazette (B.O.E — https://www.boe.es).
The IT product identified in this certificate has been evaluated at an accredited and licensed/approved evaluation
facility using the Common Methodology for Information Technology Security Evaluation/Common Criteria for
Information Technology Security Evaluation version 3.1 release 5 and CC Supporting Documents as listed in the
Certification Report. This certificate applies only to the specific version and release of the productin its evaluated
configuration and in conjunction with the complete Certification Report. The evaluation has been conducted in
accordance with the provisions of the Spanish IT Security Evaluation and Certification Scheme, PRE/2740/2007
September the 19th, and the conclusions of the evaluation facility in the evaluation technical report are consistent
with the evidence adduced.This certificate is not an endorsement of the IT product by the Spanish Scheme or by
any other organisation that recognises or gives effect to this certificate, and no warranty of the IT product by the
Spanish Schemeorby any other organisation that recognises or gives effect to this certificate, is either expressed or
implied.