{"title":"可信系统评估标准的比较","authors":"C. Pfleeger","doi":"10.1109/CMPASS.1990.175410","DOIUrl":null,"url":null,"abstract":"A comparison of the trusted computer system evaluation criteria (TCSEC) and methodologies of four countries, the United States, Canada, Germany, and Britain, is presented. The evaluation criteria and methodologies of each country are described, and the four national approaches are compared. The US criteria apply to operating systems supporting a confidentiality security policy. The Canadian criteria extend the US TCSEC with criteria for integrity and availability, as well as for accountability and assurance. The German criteria are patterned closely on the US criteria, with the major exceptions that features and assurances are rated separately. With the British criteria, a developer states certain claims about a product's functionality, and the claims are independently evaluated for a chosen level of assurance.<<ETX>>","PeriodicalId":122768,"journal":{"name":"Fifth Annual Conference on Computer Assurance, Systems Integrity, Software Safety and Process Security.","volume":"80 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1990-06-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Comparison of trusted systems evaluation criteria\",\"authors\":\"C. Pfleeger\",\"doi\":\"10.1109/CMPASS.1990.175410\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"A comparison of the trusted computer system evaluation criteria (TCSEC) and methodologies of four countries, the United States, Canada, Germany, and Britain, is presented. The evaluation criteria and methodologies of each country are described, and the four national approaches are compared. The US criteria apply to operating systems supporting a confidentiality security policy. The Canadian criteria extend the US TCSEC with criteria for integrity and availability, as well as for accountability and assurance. The German criteria are patterned closely on the US criteria, with the major exceptions that features and assurances are rated separately. With the British criteria, a developer states certain claims about a product's functionality, and the claims are independently evaluated for a chosen level of assurance.<<ETX>>\",\"PeriodicalId\":122768,\"journal\":{\"name\":\"Fifth Annual Conference on Computer Assurance, Systems Integrity, Software Safety and Process Security.\",\"volume\":\"80 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1990-06-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Fifth Annual Conference on Computer Assurance, Systems Integrity, Software Safety and Process Security.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CMPASS.1990.175410\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Fifth Annual Conference on Computer Assurance, Systems Integrity, Software Safety and Process Security.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CMPASS.1990.175410","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
A comparison of the trusted computer system evaluation criteria (TCSEC) and methodologies of four countries, the United States, Canada, Germany, and Britain, is presented. The evaluation criteria and methodologies of each country are described, and the four national approaches are compared. The US criteria apply to operating systems supporting a confidentiality security policy. The Canadian criteria extend the US TCSEC with criteria for integrity and availability, as well as for accountability and assurance. The German criteria are patterned closely on the US criteria, with the major exceptions that features and assurances are rated separately. With the British criteria, a developer states certain claims about a product's functionality, and the claims are independently evaluated for a chosen level of assurance.<>
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
