Common Criteria certifications

Article
11/22/2023

Microsoft is committed to optimizing the security of its products and services. As part of that commitment, Microsoft supports the Common Criteria Certification Program, ensures that products incorporate the features and functions required by relevant Common Criteria Protection Profiles, and completes Common Criteria certifications of Microsoft Windows products. This topic lists the current and archived certified Windows products, together with relevant documentation from each certification.

Certified products

The product releases below are currently certified against the cited Protection Profile, as listed on the Common Criteria Portal:

The Security Target describes the product edition(s) in scope, the security functionality in the product, and the assurance measures from the Protection Profile used as part of the evaluation
The Administrative Guide provides guidance on configuring the product to match the evaluated configuration
The Certification Report or Validation Report documents the results of the evaluation by the validation team, with the Assurance Activity Report providing details on the evaluator's actions

Windows 11, Windows 10 (version 20H2, 21H1, 21H2), Windows Server, Windows Server 2022, Azure Stack HCIv2 version 21H2, Azure Stack Hub and Edge

Certified against the Protection Profile for General Purpose Operating Systems, including the Extended Package for Wireless Local Area Network Clients and the Module for Virtual Private Network Clients

Windows 10, version 2004, Windows Server, version 2004, Windows Server Core Datacenter (Azure Fabric Controller), Windows Server Core Datacenter (Azure Stack)

Windows 10, version 1909, Windows Server, version 1909, Windows Server 2019, version 1809 Hyper-V

Certified against the Protection Profile for Virtualization, including the Extended Package for Server Virtualization.

Windows 10, version 1909, Windows Server, version 1909

Windows 10, version 1903, Windows Server, version 1903

Certified against the Protection Profile for General Purpose Operating Systems, including the Extended Package for Wireless Local Area Network Clients.

Windows 10, version 1809, Windows Server, version 1809

Certified against the Protection Profile for General Purpose Operating Systems, including the Extended Package for Wireless Local Area Network Clients.

Windows 10, version 1803, Windows Server, version 1803

Certified against the Protection Profile for General Purpose Operating Systems, including the Extended Package for Wireless Local Area Network Clients.

Windows 10, version 1709, Windows Server, version 1709

Certified against the Protection Profile for General Purpose Operating Systems.

Windows 10, version 1703, Windows Server, version 1703

Certified against the Protection Profile for General Purpose Operating Systems.

Windows 10, version 1607, Windows Server 2016

Certified against the Protection Profile for General Purpose Operating Systems.

Windows 10, version 1507, Windows Server 2012 R2

Certified against the Protection Profile for General Purpose Operating Systems.

Archived certified products

The product releases below were certified against the cited Protection Profile and are now archived, as listed on the Common Criteria Portal:

The Security Target describes the product edition(s) in scope, the security functionality in the product, and the assurance measures from the Protection Profile used as part of the evaluation
The Administrative Guide provides guidance on configuring the product to match the evaluated configuration
The Certification Report or Validation Report documents the results of the evaluation by the validation team, with the Assurance Activity Report providing details on the evaluator's actions