Personnel requirements for the Common Criteria

One or more qualified individuals must be assigned to manage the evaluated configuration and the security of the information that it contains. These authorized users must act in a cooperating manner and follow the instructions in this information and other guidance information.

Assign all individual users a unique user ID and specific security label, and grant users access to objects based on existing procedures.

Labeled Security only: Every individual must be associated with a security label.