Commercial Product Assurance (CPA) is a CESG approach to gaining confidence in the security of commercial products.
Contents
It is intended to supplant other approaches such as Common Criteria (CC) and CCT Mark for UK government use.
Organisation
CPA is being developed under the auspices of the UK Government's CESG as the UK National Technical Authority (NTA) for Information Security.
Architectural patterns
CESG also produce Architectural Patterns which cover good practices for common business problems, which looks to use CPA product.
Current Architectural Patterns include:
Comparisons
In comparison to other schemes:
References
Commercial Product Assurance Wikipedia(Text) CC BY-SA