When we buy a home, or looking for rented apartment, we provide our specifications to the real estate manager or house brokers or look into apartment specifications carefully in the advertisement. Our specifications would certainly include physical security, availability water and power. Sometimes we may also inquire about the place with other negative events and its impact such as flood and prone to earthquake etc.. In the similar way, when we procure an Information Technology related products such as Software, OS, Databases, Network devices, we need perform an assessment to validate its ability to meet our security requirements. We do not need to perform a real assessment on IT related products on our own instead, we have Common Criteria for Information Technology Security Evaluation - Certificate Authorizing Members and third party Certification Assurance agencies across the globe to provide these details to IT product consumers.