An investigation of CC´s contribution to confidence in security

Author

Shi, Wenchang ; Sun, Yufang

Author_Institution

Inst. of Software, Acad. Sinica, Beijing, China

fYear

2001

fDate

2001

Firstpage

333

Lastpage

338

Abstract

To facilitate the availability of commercial computer products with sufficient security, excellent evaluation criteria have to be of the potential to drive the course of the security marketplace. The newness and the lack of experiences in the exercise of the Common Criteria (CC), which was adopted in 1999 as an international standard for security product evaluation, make it imperative that efforts be exerted to investigate the prospective influence of the CC in advancing the state of computer security. The paper casts light on the contribution of the CC to establishing confidence in security, which is still a barren land in need of cultivation. A picture of the process of the work to produce a security product is outlined. The roles each part of the work may play in obtaining confidence are examined. In practice, a research experiment is carried out aiming at building a secure operating system in accordance with the CC philosophy

Keywords

security; standards; Common Criteria; commercial computer products; computer security; confidence in security; evaluation criteria; international standard; security product evaluation; Books; Computer security; Drives; Knowledge engineering; Linux; Operating systems; Protection; Sun; Technological innovation;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Networks and Mobile Computing, 2001. Proceedings. 2001 International Conference on

Conference_Location

Los Alamitos, CA

Print_ISBN

0-7695-1381-6

Type

conf

DOI

10.1109/ICCNMC.2001.962616

Filename

962616