Common Criteria Certifications

Microsoft is committed to optimizing the security of its products and services. As part of that commitment, Microsoft supports the Common Criteria certification program, ensures that products incorporate the features and functions required by relevant Common Criteria Protection Profiles, and completes Common Criteria certifications of Microsoft Windows products. This topic lists the current and archived certified Windows products, together with relevant documentation from each certification.

Certified Products

The product releases below are currently certified against the cited Protection Profile, as listed on the Common Criteria Portal. The Security Target describes the product edition(s) in scope, the security functionality in the product, and the assurance measures from the Protection Profile used as part of the evaluation. The Administrative Guide provides guidance on configuring the product to match the evaluated configuration. The Certification Report or Validation Report documents the results of the evaluation by the validation team, with the Assurance Activity Report providing details on the evaluator's actions.

Microsoft Windows Server, Windows 10 version 1909 (November 2019 Update), Microsoft Windows Server 2019 (version 1809) Hyper-V

Certified against the Protection Profile for Virtualization, including the Extended Package for Server Virtualization.

Microsoft Windows 10 and Windows Server (November 2019 Update, version 1909)

Certified against the Protection Profile for General Purpose Operating Systems, including the Extended Package for Wireless Local Area Network Clients and the Module for Virtual Private Network Clients.

Microsoft Windows 10 and Windows Server (May 2019 Update, version 1903)

Certified against the Protection Profile for General Purpose Operating Systems, including the Extended Package for Wireless Local Area Network Clients.

Microsoft Windows 10 and Windows Server (October 2018 Update, version 1809)

Certified against the Protection Profile for General Purpose Operating Systems, including the Extended Package for Wireless Local Area Network Clients.

Microsoft Windows 10 and Windows Server (April 2018 Update, version 1803)

Certified against the Protection Profile for General Purpose Operating Systems, including the Extended Package for Wireless Local Area Network Clients.

Microsoft Windows 10 and Windows Server (Fall Creators Update, version 1709)

Certified against the Protection Profile for General Purpose Operating Systems.

Microsoft Windows 10 (Creators Update, version 1703)

Certified against the Protection Profile for General Purpose Operating Systems.

Microsoft Windows 10 (Anniversary Update, version 1607) and Windows Server 2016

Certified against the Protection Profile for General Purpose Operating Systems.

Microsoft Windows 10 (version 1507) and Windows Server 2012 R2

Certified against the Protection Profile for General Purpose Operating Systems.

Archived Certified Products

The product releases below were certified against the cited Protection Profile and are now archived, as listed on the Common Criteria Portal. The Security Target describes the product edition(s) in scope, the security functionality in the product, and the assurance measures from the Protection Profile used as part of the evaluation. The Administrative Guide provides guidance on configuring the product to match the evaluated configuration. The Validation Report documents the results of the evaluation by the validation team, with the Assurance Activity Report, where available, providing details on the evaluator's actions.

Microsoft Windows Server 2016, Windows Server 2012 R2, and Windows 10

Certified against the Protection Profile for Server Virtualization.

Microsoft Windows 10 and Windows 10 Mobile (Anniversary Update, version 1607)

Certified against the Protection Profile for Mobile Device Fundamentals.

Microsoft Windows 10 (Anniversary Update, version 1607) and Windows Server 2016

Certified against the Protection Profile for IPsec Virtual Private Network (VPN) Clients.

Microsoft Windows 10 (November 2015 Update, version 1511)

Certified against the Protection Profile for Mobile Device Fundamentals.

Microsoft Windows 10 and Windows 10 Mobile (version 1507)

Certified against the Protection Profile for Mobile Device Fundamentals.

Microsoft Windows 10 (version 1507)

Certified against the Protection Profile for IPsec Virtual Private Network (VPN) Clients.

Windows 8.1 with Surface 3 and Windows Phone 8.1 with Lumia 635 and Lumia 830

Certified against the Protection Profile for Mobile Device Fundamentals.

Microsoft Surface Pro 3 and Windows 8.1

Certified against the Protection Profile for Mobile Device Fundamentals.

Windows 8.1 and Windows Phone 8.1

Certified against the Protection Profile for Mobile Device Fundamentals.

Windows 8 and Windows Server 2012

Certified against the Protection Profile for General Purpose Operating Systems.

Windows 8 and Windows RT

Certified against the Protection Profile for General Purpose Operating Systems.

Windows 8 and Windows Server 2012 BitLocker

Certified against the Protection Profile for Full Disk Encryption.

Windows 8, Windows RT, and Windows Server 2012 IPsec VPN Client

Certified against the Protection Profile for IPsec Virtual Private Network (VPN) Clients.

Windows 7 and Windows Server 2008 R2

Certified against the Protection Profile for General Purpose Operating Systems.

Microsoft Windows Server 2008 R2 Hyper-V Role

Windows Vista and Windows Server 2008 at EAL4+

Windows Vista and Windows Server 2008 at EAL1

Microsoft Windows Server 2008 Hyper-V Role

Windows XP and Windows Server 2003

Windows Server 2003 Certificate Server

Windows Rights Management Services