使用通用标准概念构建模块化安全软件认证

2012 38th Euromicro Conference on Software Engineering and Advanced Applications Pub Date : 2012-09-05 DOI:10.1109/SEAA.2012.9

C. Preschern, Kurt Dietrich

{"title":"使用通用标准概念构建模块化安全软件认证","authors":"C. Preschern, Kurt Dietrich","doi":"10.1109/SEAA.2012.9","DOIUrl":null,"url":null,"abstract":"Safety and security certification are time and money consuming tasks. Changes to certified systems usually require re-certification of the whole product. Modular certification approaches applied to the safety and security domain aim at reducing these costs. In this paper, modular certification concepts with focus on IEC 61508 safety certification are analyzed and an approach for structuring the modular certification process by providing detailed requirements is suggested. We gather requirements from the security domain in order to fulfill objectives which have to be reached to enable modular safety certification. Functional requirements are taken from the Common Criteria Separation Kernel Protection Profile and assurance requirements are taken from a Common Criteria class responsible for compositional security certification.","PeriodicalId":298734,"journal":{"name":"2012 38th Euromicro Conference on Software Engineering and Advanced Applications","volume":"162 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-09-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Structuring Modular Safety Software Certification by Using Common Criteria Concepts\",\"authors\":\"C. Preschern, Kurt Dietrich\",\"doi\":\"10.1109/SEAA.2012.9\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Safety and security certification are time and money consuming tasks. Changes to certified systems usually require re-certification of the whole product. Modular certification approaches applied to the safety and security domain aim at reducing these costs. In this paper, modular certification concepts with focus on IEC 61508 safety certification are analyzed and an approach for structuring the modular certification process by providing detailed requirements is suggested. We gather requirements from the security domain in order to fulfill objectives which have to be reached to enable modular safety certification. Functional requirements are taken from the Common Criteria Separation Kernel Protection Profile and assurance requirements are taken from a Common Criteria class responsible for compositional security certification.\",\"PeriodicalId\":298734,\"journal\":{\"name\":\"2012 38th Euromicro Conference on Software Engineering and Advanced Applications\",\"volume\":\"162 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-09-05\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 38th Euromicro Conference on Software Engineering and Advanced Applications\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SEAA.2012.9\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 38th Euromicro Conference on Software Engineering and Advanced Applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SEAA.2012.9","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

安全和安全认证是一项耗时耗财的任务。更改认证系统通常需要对整个产品进行重新认证。应用于安全和安保领域的模块化认证方法旨在降低这些成本。本文分析了以IEC 61508安全认证为重点的模块化认证概念，并提出了通过提供详细要求来构建模块化认证过程的方法。我们从安全领域收集需求，以实现必须达到的目标，从而实现模块化安全认证。功能需求取自通用标准分离内核保护概要文件，保证需求取自负责组合安全认证的通用标准类。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Structuring Modular Safety Software Certification by Using Common Criteria Concepts

Safety and security certification are time and money consuming tasks. Changes to certified systems usually require re-certification of the whole product. Modular certification approaches applied to the safety and security domain aim at reducing these costs. In this paper, modular certification concepts with focus on IEC 61508 safety certification are analyzed and an approach for structuring the modular certification process by providing detailed requirements is suggested. We gather requirements from the security domain in order to fulfill objectives which have to be reached to enable modular safety certification. Functional requirements are taken from the Common Criteria Separation Kernel Protection Profile and assurance requirements are taken from a Common Criteria class responsible for compositional security certification.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2012 38th Euromicro Conference on Software Engineering and Advanced Applications

自引率

0.00%

发文量