The National Computer Security Center (NCSC) is the United States government agency responsible for performing software product security evaluations. These evaluations are carried out against a set of requirements outlined in the NCSC publication "Department of Defense Trusted Computer System Evaluation Criteria," which is commonly referred to as the "Orange Book." Windows NT 3.5 has been successfully evaluated by the NCSC at the C2 security level as defined in the Orange Book.