TM8104 IT Security EvaluationAutumn 20091 CC – Common Criteria (for IT Security Evaluation) The CC permits comparability between the results of independent.

Slides:

Advertisements

Similar presentations

Security Requirements

Advertisements

Module 1 Evaluation Overview © Crown Copyright (2000)

University of Tulsa - Center for Information Security Common Criteria Dawn Schulte Leigh Anne Winters.

Common Criteria Evaluation and Validation Scheme Syed Naqvi XtreemOS Training Day.

Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 5.2: Evaluation of Secure Information Systems.

International Standards for Software & Systems Documentation Ralph E. Robinson R 2 Innovations.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

1 © Cooley Godward 2001 PKI A SSESSMENT The process of evaluating, verifying, and certifying your PKI Presented by: Randy V. Sabett Vanguard Enterprise.

Information Security of Embedded Systems : Design of Secure Systems Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.

Chapter 16: Standardization and Security Criteria: Security Evaluation of Computer Products Guide to Computer Network Security.

Common Criteria Richard Newman. What is the Common Criteria Cooperative effort among Canada, France, Germany, the Netherlands, UK, USA (NSA, NIST) Defines.

Effective Design of Trusted Information Systems Luděk Novák,

The Common Criteria for Information Technology Security Evaluation

IT Security Evaluation By Sandeep Joshi

1 norshahnizakamalbashah CEM v3.1: Chapter 10 Security Target Evaluation.

The Common Criteria Cs5493(7493). CC: Background The need for independently evaluated IT security products and systems led to the TCSEC Rainbow series.

Conformity Assessment Practical Implications InterAgency Committee on Standards Policy June 2007 Gordon Gillerman Conformity Assessment Advisor Homeland.

, Name, Folie 1 IT Audit Methodologies.

ISO/IEC JTC1 SC37 Overview

1 Evaluating Systems CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 6, 2004.

COEN 351: E-Commerce Security Public Key Infrastructure Assessment and Accreditation.

Stephen S. Yau CSE , Fall Evaluating Systems for Functionality and Assurance.

© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.

National Information Assurance Partnership NIAP 2000 Building More Secure Systems for the New Millenium sm.

Opportunities & Implications for Turkish Organisations & Projects

Melanie Volkamer (Research Manager) University of Passau, Innstraße 43, Passau, Germany, Tel: / Webpage:

Fundamentals of ISO.

1 A Common-Criteria Based Approach for COTS Component Selection Wes J. Lloyd Colorado State University Young Researchers Workshop (YRW) 2004.

Gurpreet Dhillon Virginia Commonwealth University

Approaches for forest certification System versus performance ? Presentation prepared by Pierre Hauselmann for the WWF / WB Alliance Capacity building.

SEC835 Database and Web application security Information Security Architecture.

Practical IS security design in accordance with Common Criteria Security and Protection of Information 2005 František VOSEJPKA S.ICZ a.s. June 5, 2005.

A Security Business Case for the Common Criteria Marty Ferris Ferris & Associates, Inc

Information Systems Security Computer System Life Cycle Security.

Evaluating Systems Information Assurance Fall 2010.

1 A Disciplined Security Specification for a High- Assurance Grid by Ning Zhu, Jussipekka Leiwo, and Stephen John Turner Parallel Computing Centre Distributed.

ISA 562 Internet Security Theory & Practice

Conformity Assessment and Accreditation Mike Peet Chief Executive Officer South African National Accreditation System.

Background. History TCSEC Issues non-standard inflexible not scalable.

1 Common Criteria Ravi Sandhu Edited by Duminda Wijesekera.

Security Standards and Threat Evaluation. Main Topic of Discussion  Methodologies  Standards  Frameworks  Measuring threats –Threat evaluation –Certification.

You say to-mah-to, I say to-mae-to: why isn’t there a single solution to Information Security Assurance? Apostol Vassilev atsec information security &

The Value of Common Criteria Evaluations Stuart Katzke, Ph.D. Senior Research Scientist National Institute of Standards & Technology 100 Bureau Drive;

CACR CC Briefing Stephen Booth Computer and System Security Section Communications Security Establishment

CMSC : Common Criteria for Computer/IT Systems

1 Using Common Criteria Protection Profiles. 2 o A statement of user need –What the user wants to accomplish –A primary audience: mission/business owner.

Copyright (C) 2007, Canon Inc. All rights reserved. P. 0 A Study on the Cryptographic Module Validation in the CC Evaluation from Vendors' point of view.

SAM-101 Standards and Evaluation. SAM-102 On security evaluations Users of secure systems need assurance that products they use are secure Users can:

Trusted Operating Systems

TM8104 IT Security EvaluationAutumn Evaluation - the Main Road to IT Security Assurance CC Part 3.

Trusted Computing Systems Definitions and Standards.

Quality Milestones Elaborate quality system developed over the years “Joint Agenda Building” (JAB) group “Strategic Quality” – Progress report CA/80/04.

The Power of Recommendations Dainius Jakimavičius National Audit Office of Lithuania Vilnius, April 23, 2013.

Chapter 21: Evaluating Systems Dr. Wayne Summers Department of Computer Science Columbus State University

CSCE 727 Awareness and Training Secure System Development and Monitoring.

Technology Services – National Institute of Standards and Technology Conformity Assessment ANSI-HSSP Workshop Emergency Communications December 2, 2004.

Information Security Principles and Practices by Mark Merkow and Jim Breithaupt Chapter 5: Security Architecture and Models.

Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.

1 Security Architecture and Designs  Security Architecture Description and benefits  Definition of Trusted Computing Base (TCB)  System level and Enterprise.

Department of Computer Science Introduction to Information Security Chapter 8 ISO/IEC Semester 1.

Security Functional Requirements Kashif Imran. Overview Common Criteria Protection Profiles Security Objectives Security Requirements Security Functional.

Security Architecture and Design Chapter 4 Part 4 Pages 377 to 416.

ISO’s standardization approach to security, privacy and trust

Introduction for the Implementation of Software Configuration Management I thought I knew it all !

The Common Criteria for Information Technology Security Evaluation

Ch.18 Evaluating Systems - Part 2 -

UNIT V QUALITY SYSTEMS.

2006 Annual Research Review & Executive Forum

IT SECURITY EVALUATION ACCORDING TO HARMONIZED AND APPROVED CRITERIA

Presentation transcript:

TM8104 IT Security EvaluationAutumn CC – Common Criteria (for IT Security Evaluation) The CC permits comparability between the results of independent security evaluations. The CC does so by providing a common set of requirements for the security functionality of IT products and for assurance measures applied to these IT products during a security evaluation. These IT products may be implemented in hardware, firmware or software.

TM8104 IT Security EvaluationAutumn CC Scope Common Criteria (CC), is a multipart standard meant to be used as the basis for evaluation of security properties of IT products. By establishing such a common criteria base, the results of an IT security evaluation may be meaningful to a wider audience.

TM8104 IT Security EvaluationAutumn CC Target Audience Consumers –to help decide whether a TOE fulfils their security needs Developers –to help identifying security requirements to be addressed by the TOE Evaluators –to help forming judgment about the conformance of the TOE to their security requirements

TM8104 IT Security EvaluationAutumn CC Has Limited Coverage The CC does not cover: –administrative measures such as organisational, personnel, physical, and procedural controls –physical aspects of IT security such as electromagnetic emanation –evaluation methodology –the administrative and legal framework under which the criteria may be applied –the accreditation process –inherent qualities of cryptographic algorithms

TM8104 IT Security EvaluationAutumn WG 1WG 2WG 3 Security Evaluation Criteria JTC 1 ISO/IEC Joint Technical Committee no. 1 Information Technology SC 27 Security Techniques Security Techniques and Mechanisms Requirements, Security Services and Guidelines ISO/IEC standardisation of IT Security Evaluation Criteria

TM8104 IT Security EvaluationAutumn WG 3 Terms of Reference 1. Standards for IT Security evaluation and certification of IT systems, components, and products. This will include consideration of computer networks, distributed systems, associated application services, etc. 2. Three aspects may be distinguished: a) evaluation criteria b) methodology for application of the criteria c) administrative procedures for evaluation, certification and accreditation schemes. 3. This work will reflect the needs of relevant market sectors in society, as represented in ISO, expressed in standards for security functionality and assurance. 4. Account will be taken of related ISO standards for quality management and testing so as not to duplicate these efforts.

TM8104 IT Security EvaluationAutumn History of IT Security Evaluation Criteria Canadian Initiatives CTCPEC 3 European national and Regional initiatives ISO Standard NIST MSFR ITSEC 1.2 Federal Criteria 1997 ISO Initiatives 1998 Common Criteria Project CC V.1.0 CC V.2.0 US Orange Book 1999 CD/DIS

TM8104 IT Security EvaluationAutumn The CC Development Project Legal Notice: The governmental organisations listed below contributed to the development of this version of the Common Criteria for Information Technology Security Evaluation. As the joint holders of the copyright in the Common Criteria for Information Technology Security Evaluation, version 3.1 Parts 1 through 3 (called “CC 3.1”), they hereby grant non-exclusive license to ISO/IEC to use CC 3.1 in the continued development/maintenance of the ISO/IEC international standard. However, these governmental organisations retain the right to use, copy, distribute, translate or modify CC 3.1 as they see fit.

TM8104 IT Security EvaluationAutumn CC Part One Scope: * IT - Security; reduction of risks associated with threats to the information arising directly or indirectly from human error or deliberate subversion * Threat analysis;to discover conceivable threats * Risk analysis;to determine countermeasures

TM8104 IT Security EvaluationAutumn The CC Development Club Australia/New Zealand: The Defence Signals Directorate and the Government Communications Security Bureau respectively; Canada: Communications Security Establishment; France: Direction Centrale de la Sécurité des Systèmes d'Information; Germany: Bundesamt für Sicherheit in der Informationstechnik; Japan: Information Technology Promotion Agency Netherlands: Netherlands National Communications Security Agency; Spain: Ministerio de Administraciones Públicas and Centro Criptológico Nacional; United Kingdom: Communications-Electronics Security Group; United States: The National Security Agency and the National Institute of Standards and Technology.

TM8104 IT Security EvaluationAutumn General Evaluation Model

TM8104 IT Security EvaluationAutumn Evaluation Concepts and Relationships

TM8104 IT Security EvaluationAutumn Influence of evaluation Potential for influence Security Requirements (PP and ST) Evaluation Requirements (CC) TOE and Evaluation Evidence Evaluation Report Operation Report Develop TOE Evaluate TOE Operate TOE

TM8104 IT Security EvaluationAutumn Use of evaluation results Register of protection profiles Evaluated products catalogue Security requirements Evaluation results Develop and evaluate TOE Catalogue product Accredit system Evaluated product Accredited system System accreditation criteria

TM8104 IT Security EvaluationAutumn The Protection Profile (PP)

TM8104 IT Security EvaluationAutumn TOE in its environment TOE Security Objectives ENVIRONMENT Security Policy Threats LawsCustoms KnowledgeExpertise

TM8104 IT Security EvaluationAutumn Specification hierarchy OBJECTIVES REQUIREMENTS TOE SPECIFICATION TOE IMPLEMENTATION Abstraction Level Desired behaviour; may be tested (100%) Absence of undesired behaviour;cannot be exhaustively tested

TM8104 IT Security EvaluationAutumn

TM8104 IT Security EvaluationAutumn Basic relationship of the Protection Profile and the Security Target ObjectivesRequirementsSpecificationsMechanisms Protection Profile Security Target TOE

TM8104 IT Security EvaluationAutumn Evaluation Results

TM8104 IT Security EvaluationAutumn The Double Hierarchy Functions Assurance Class Family Component Element Functional Package Functional Package Assurance Level Assurance Level Protection Profile PP refinements

TM8104 IT Security EvaluationAutumn The Evaluation Process ST/TOE Evaluation –an ST evaluation is carried out by applying the Security Target evaluation criteria to the Security Target. –a TOE evaluation is more complex ST TOE Development environment –Design documents –Developer test results applying SARs on the evaluation evidence

TM8104 IT Security EvaluationAutumn CC Part 2 - The Functional Class Set FAU - Security Audit FCO - Communication FCS - Cryptographic Support FDP - User Data Protection FIA - Identification and Authentication FMT – Security Management FPR - Privacy FPT - Protection of the Trusted Security Functions FRU - Resource Utilization FTA - TOE Access FTP - Trusted Paths/Channels

TM8104 IT Security EvaluationAutumn CC Part 3 - Assurance Levels EAL0 - Unassured EAL1 - Functionally tested EAL2 - Structurally tested EAL3 - Methodically tested and checked EAL4 - Methodically designed, tested, and reviewed EAL5 - Semiformally designed and tested EAL6 - Semiformally verified design and tested EAL7 - Formally verified design and tested