Relacionar Columnas Security EvaluationVersión en línea Computer System Security Chapter 11 por Aidora Abdullah 1 Protection Profile 2 Cryptographic Modules, Security Levels 3 Security Target 4 EAL 1 5 ITSEC 6 TCSEC 7 Method of Evaluation 8 Common Criteria 9 Functionality 10 Assurance 11 Trusted Execution Environment 12 Evaluation Assurance Level (EAL) 13 Purpose of Evaluation 14 Target of Evaluation 15 EAL 7 Product/System has the security properties claimed, is suitable for a given application, and is accredited. An example of Data Protection, Protection Profile. Evaluation should not miss problems / different evaluations of the same product should give the same results. European security evaluation criteria separating functionality and assurance. Defines what has to be done in an evaluation. Functionally tested. System provides adequate for meeting a user's concrete security requirements. Software has to meet generic security requirements; OR system meets specific security requirements of a given application. Implementation-dependent statement of security needs for a specific identified TOE. An example of a Trusted Computing Protection Profile. An international set of specifications and guidelines designed to evaluate information security products and systems. The security services have been implemented properly so that the user can rely on them. A reusable set of security requirements. Security evaluation criteria for US Defense sector. formally verified, designed and tested.
Crear