Defining requirements for network solution in protection profiles

IEEE 37th Annual 2003 International Carnahan Conference onSecurity Technology, 2003. Proceedings. Pub Date : 2003-10-14 DOI:10.1109/CCST.2003.1297581

Y. Sung, Eun-Kyoung Yi, Byung-Gyu No, Jae Sung Kim

{"title":"Defining requirements for network solution in protection profiles","authors":"Y. Sung, Eun-Kyoung Yi, Byung-Gyu No, Jae Sung Kim","doi":"10.1109/CCST.2003.1297581","DOIUrl":null,"url":null,"abstract":"The international standards about computer security are widely being used for both government and commercial sector. Many countries seek for their computer security at the common criteria (CC), so organizations learn more how to make protection profiles (PPs) to protect them from outside threats. However in case people make protection profiles using both \"Guide for the Production of PPs and STs\" and the common criteria, they confront some problems when defining requirements for network-wide systems instead of a single system. Many requirements in the CC are described based on a single system's activities. We found that network-wide product's PPs are required of different approach, where some statements in the CC are modified or newly extended. We show that how the network-wide targets of evaluation (TOEs) are different from a single system TOE in terms of its protection scope. This paper is of prior interest to PP/ST writers who have tasks of composing network product, or typically IDS PP/ST.","PeriodicalId":344868,"journal":{"name":"IEEE 37th Annual 2003 International Carnahan Conference onSecurity Technology, 2003. Proceedings.","volume":"35 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2003-10-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE 37th Annual 2003 International Carnahan Conference onSecurity Technology, 2003. Proceedings.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CCST.2003.1297581","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The international standards about computer security are widely being used for both government and commercial sector. Many countries seek for their computer security at the common criteria (CC), so organizations learn more how to make protection profiles (PPs) to protect them from outside threats. However in case people make protection profiles using both "Guide for the Production of PPs and STs" and the common criteria, they confront some problems when defining requirements for network-wide systems instead of a single system. Many requirements in the CC are described based on a single system's activities. We found that network-wide product's PPs are required of different approach, where some statements in the CC are modified or newly extended. We show that how the network-wide targets of evaluation (TOEs) are different from a single system TOE in terms of its protection scope. This paper is of prior interest to PP/ST writers who have tasks of composing network product, or typically IDS PP/ST.

查看原文本刊更多论文

定义保护配置文件中网络解决方案的需求

计算机安全的国际标准被广泛应用于政府和商业部门。许多国家都在寻求符合通用标准(CC)的计算机安全，因此组织更多地学习如何制作保护配置文件(pp)来保护自己免受外部威胁。然而，如果人们同时使用“PPs和STs生产指南”和通用标准来制定保护配置文件，他们在定义整个网络系统而不是单一系统的要求时就会遇到一些问题。CC中的许多需求都是基于单个系统的活动来描述的。我们发现，全网产品的pp需要不同的方法，其中CC中的一些语句被修改或新扩展。我们展示了网络范围评估目标(TOE)在其保护范围方面与单个系统TOE的不同之处。本文是优先感兴趣的PP/ST作家谁有组成网络产品的任务，或典型的IDS PP/ST。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE 37th Annual 2003 International Carnahan Conference onSecurity Technology, 2003. Proceedings.

自引率

0.00%

发文量