Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSCE 727 Awareness and Training Secure System Development and Monitoring.

Published byEsmond Lynch Modified over 8 years ago

Similar presentations

Presentation on theme: "CSCE 727 Awareness and Training Secure System Development and Monitoring."— Presentation transcript:

1 CSCE 727 Awareness and Training Secure System Development and Monitoring

2 Information Warfare - Farkas2 Reading Reading for this lecture: Rainbow Series Library, http://www.fas.org/irp/nsa/rainbow.htm Common Criteria, http://www.commoncriteriaportal.org/http://www.fas.org/irp/nsa/rainbow.htmhttp://www.commoncriteriaportal.org/ NIST, Guide for Applying the Risk Management Framework to Federal Information System, 2010, http://csrc.nist.gov/publications/nistpubs/800-37-rev1/sp800-37-rev1- final.pdf http://csrc.nist.gov/publications/nistpubs/800-37-rev1/sp800-37-rev1- final.pdf D. Young, Huawei, ZTE Banned From Selling to U.S. Government, http://techonomy.com/2013/04/huawei-zte-banned-from-selling-to-u-s- government/ http://techonomy.com/2013/04/huawei-zte-banned-from-selling-to-u-s- government/

3 SYSTEM CERTIFICATION Information Warfare - Farkas3

4 4 Reading list Denning: Chapter 14 Rainbow Series Library, http://fas.org/irp/nsa/rainbow.htm Common Criteria, http://www.commoncriteriaportal.org/ http://fas.org/irp/nsa/rainbow.htm http://www.commoncriteriaportal.org/

5 Information Warfare - Farkas5 Building It Secure 1960s: US Department of Defense (DoD) risk of unsecured information systems 1970s: – 1977: DoD Computer Security Initiative – US Government and private concerns – National Bureau of Standards (NBS – now NIST) Responsible for stadards for acquisition and use of federal computing systems Federal Information Processing Standards (FIPS PUBs)

6 Information Warfare - Farkas6 NBS Two initiatives for security: – Cryptography standards 1973: invitation for technical proposals for ciphers 1977: Data Encryption Standard 2001: Advanced Encryption Standard (NIST) – Development and evaluation processes for secure systems Conferences and workshops Involves researchers, constructors, vendors, software developers, and users 1979: Mitre Corporation: entrusted to produce an initial set of criteria to evaluate the security of a system handling classified data

7 Information Warfare - Farkas7 National Computer Security Center 1981: National Computer Security Center (NCSC) was established within NSA – To provide technical support and reference for government agencies – To define a set of criteria for the evaluation and assessment of security – To encourage and perform research in the field of security – To develop verification and testing tools – To increase security awareness in both federal and private sector 1985: Trusted Computer System Evaluation Criteria (TCSEC) == Orange Book

8 Information Warfare - Farkas8 Orange Book Orange Book objectives – Guidance of what security features to build into new products – Provide measurement to evaluate security of systems – Basis for specifying security requirements Security features and Assurances Trusted Computing Base (TCB) security components of the system: hardware, software, and firmware + reference monitor

9 Information Warfare - Farkas9 Orange Book Supply Users: evaluation metrics to assess the reliability of the security system for protection of classified or sensitive information when – Commercial product – Internally developed system Developers/vendors: design guide showing security features to be included in commercial systems Designers: guide for the specification of security requirements

10 Information Warfare - Farkas10 Orange book Set of criteria and requirements Three main categories: – Security policy – protection level offered by the system – Accountability – of the users and user operations – Assurance – of the reliability of the system

11 Information Warfare - Farkas11 Security Policy Concerns the definition of the policy regulation the access of users to information – Discretionary Access Control – Mandatory Access Control – Labels: for objects and subjects – Reuse of objects: basic storage elements must be cleaned before released to a new user

12 Information Warfare - Farkas12 Accountability Identification/authentication Audit Trusted path: no users are attempting to access the system fraudulently

13 Information Warfare - Farkas13 Assurance Reliable hardware/software/firmware components that can be evaluated separately Operation reliability Development reliability

14 Information Warfare - Farkas14 Operation reliability During system operation – System architecture: TCB isolated from user processes, security kernel isolated from non-security critical portions of the TCB – System integrity: correct operation (use diagnostic software) – Covert channel analysis – Trusted facility management: separation of duties – Trusted recovery: recover security features after TCB failures

15 Information Warfare - Farkas15 Development reliability System reliable during the development process. Formal methods. – System testing: security features tested and verified – Design specification and verification: correct design and implementation wrt security policy. TCB formal specifications proved – Configuration management: configuration of the system components and its documentation – Trusted distribution: no unauthorized modifications

16 Information Warfare - Farkas16 Documentation Defined set of documents Minimal set: – Trusted facility manual – Security features user’s guide – Test documentation – Design documentation – Personnel info: Operators, Users, Developers, Maintainers

17 Information Warfare - Farkas17 Orange Book Levels Highest Security –A1 Verified protection –B3 Security Domains –B2 Structured Protection –B1 Labeled Security Protections –C2 Controlled Access Protection –C1 Discretionary Security Protection –D Minimal Protection No Security

18 Information Warfare - Farkas18 Orange Book C1, C2: simple enhancement of existing systems. Does not break applications. B1: relatively simple enhancement of existing system. May break some of the applications. B2: major enhancement of existing systems. Will break many applications. B3: failed A1 A1: top-down design and implementation of a new system from scratch.

19 Information Warfare - Farkas19 NCSC Rainbow Series Orange: Trusted Computer System Evaluation Criteria Yellow: Guidance for applying the Orange Book Red: Trusted Network Interpretation Lavender: Trusted Database Interpretation

20 Information Warfare - Farkas20 Evaluation Process Preliminary technical review (PTR) – Preliminary technical report: architecture potential for target rating Vendor assistance phase (VAP) – Review of the documentation needed for the evaluation process, e.g., security features user’s guide, trusted facility manual, design documentation, test plan. For B or higher, additional documentations are needed, e.g., covert channel analysis, formal model, etc. Design analysis phase (DAP) – Initial product assessment report (IPAR): 100-200 pages, detailed info about the hardware, software architecture, security relevant features, team assessments, etc. – Technical Review Board – Recommendation to the NCSC

21 Information Warfare - Farkas21 Evaluation Process Formal evaluation phase (FEP) – Product Bulletin: formal and public announcement – Final Evaluation Report: information from IPAR and testing results, additional tests, review code (B2 and up), formal policy model, proof. – Recommends rating for the system – National Cyber Security Center (NCSC) decides final rating Rating maintenance phase (RAMP) – Minor changes and revisions – Reevaluated – Rating maintenance plan

22 Information Warfare - Farkas22 European Criteria German Information Security Agency: German Green Book (1988) British Department of Trade and Industry and Ministry of Defense: several volumes of criteria Canada, Australia, France: works on evaluation criteria 1991: Information Technology Security Evaluation Criteria (ITSEC) – For European community – Decoupled features from assurance – Introduced new functionality requirement classes – Accommodated commercial security requirements

23 Information Warfare - Farkas23 Common Criteria January 1996: Common Criteria – Joint work with Canada and Europe – Separates functionality from assurance – Nine classes of functionality: audit, communications, user data protection, identification and authentication, privacy, protection of trusted functions, resource utilization, establishing user sessions, and trusted path. – Seven classes of assurance: configuration management, delivery and operation, development, guidance documents, life cycle support, tests, and vulnerability assessment.

24 Information Warfare - Farkas24 Common Criteria Evaluation Assurance Levels (EAL) – EAL1: functionally tested – EAL2: structurally tested – EAL3: methodologically tested and checked – EAL4: methodologically designed, tested and reviewed – EAL5: semi-formally designed and tested – EAL6: semi-formally verified and tested – EAL7: formally verified design and tested

25 Information Warfare - Farkas25 National Information Assurance Partnership (NIAP) 1997: National Institute of Standards and Technology (NIST), National Security Agency (NSA), and Industry Aims to improve the efficiency of evaluation Transfer methodologies and techniques to private sector laboratories Functions: developing tests, test methods, tools for evaluating and improving security products, developing protection profiles and associated tests, establish formal and international schema for CC

26 National Security Issues Information Warfare - Farkas26

27 Information Warfare - Farkas27 National Security and IW U.S. agencies responsible for national security: large, complex information infrastructure 1990: defense information infrastructure (DOD). Supports – Critical war-fighting functions – Peacetime defense planning – Information for logistical support – Defense support organizations Need proper functioning of information infrastructure “digitized battlefield”

28 Information Warfare - Farkas28 National Security and IW Increased reliance on information infrastructure Heavily connected to commercial infrastructure – 95% of DOD’s unclassified communication via public network No boundaries, cost effectiveness, ambiguous

29 Information Warfare - Farkas29 National Security and IW Vital human services – Law enforcement – Firefighters – Emergency telephone system – Federal Emergency Management Agency Other Government Services and public utilities – Financial sector – Transportation – Communications – Power – Health system

30 Next Class No class on Monday April 4 Schedule back to normal on April 6 Information Warfare - Farkas30

Download ppt "CSCE 727 Awareness and Training Secure System Development and Monitoring."

Similar presentations

Title Slide EVOLVING CRITERIA FOR INFORMATION SECURITY PRODUCTS Ravi Sandhu George Mason University Fairfax, Virginia USA.

Title Slide EVOLVING CRITERIA FOR INFORMATION SECURITY PRODUCTS Ravi Sandhu George Mason University Fairfax, Virginia USA.
1 4-03 THE ORANGE BOOK Ravi Sandhu. 2 4-03 ORANGE BOOK CLASSES A1Verified Design B3Security Domains B2Structured Protection B1Labeled Security Protection.

THE ORANGE BOOK Ravi Sandhu ORANGE BOOK CLASSES A1Verified Design B3Security Domains B2Structured Protection B1Labeled Security Protection.
Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 5.2: Evaluation of Secure Information Systems.

Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 5.2: Evaluation of Secure Information Systems.
TCSEC: The Orange Book. TCSEC Trusted Computer System Evaluation Criteria.

TCSEC: The Orange Book. TCSEC Trusted Computer System Evaluation Criteria.
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.

PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
4/28/20151 Computer Security Security Evaluation.

4/28/20151 Computer Security Security Evaluation.
CSE331: Introduction to Networks and Security Lecture 34 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 34 Fall 2002.
CS526Topic 22: TCSEC and Common Criteria 1 Information Security CS 526 Topic 22: TCSEC and Common Criteria.

CS526Topic 22: TCSEC and Common Criteria 1 Information Security CS 526 Topic 22: TCSEC and Common Criteria.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
Chapter 16: Standardization and Security Criteria: Security Evaluation of Computer Products Guide to Computer Network Security.

Chapter 16: Standardization and Security Criteria: Security Evaluation of Computer Products Guide to Computer Network Security.
IT Security Evaluation By Sandeep Joshi

IT Security Evaluation By Sandeep Joshi
The Common Criteria Cs5493(7493). CC: Background The need for independently evaluated IT security products and systems led to the TCSEC Rainbow series.

The Common Criteria Cs5493(7493). CC: Background The need for independently evaluated IT security products and systems led to the TCSEC Rainbow series.
1 The Economic Impact of Cyber Attacks The Global Picture Chapter 9.

1 The Economic Impact of Cyber Attacks The Global Picture Chapter 9.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Secure Operating Systems Lesson 0x11h: Systems Assurance.

Secure Operating Systems Lesson 0x11h: Systems Assurance.
Brief Synopsis of Computer Security Standards. Tenets of Information Systems Security Confidentiality Integrity Availability Over the years, standards.

Brief Synopsis of Computer Security Standards. Tenets of Information Systems Security Confidentiality Integrity Availability Over the years, standards.
1 Evaluating Systems CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 6, 2004.

1 Evaluating Systems CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 6, 2004.
Security Controls – What Works

Security Controls – What Works
COEN 351: E-Commerce Security Public Key Infrastructure Assessment and Accreditation.

COEN 351: E-Commerce Security Public Key Infrastructure Assessment and Accreditation.
Computer Security: Principles and Practice

Computer Security: Principles and Practice

Similar presentations

Ads by Google