ABSTRACT

DoD Trusted Computer System Evaluation Criteria   [open pdf - 413KB]

"The trusted computer system evaluation criteria defined in this document classify systems into four broad hierarchical divisions of enhanced security protection. They provide a basis for the evaluation of effectiveness of security controls built into automatic data processing system products. The criteria were developed with three objectives in mind: (a) to provide users with a yardstick with which to assess the degree of trust that can be placed in computer systems for the secure processing of classified or other sensitive information; (b) to provide guidance to manufacturers as to what to build into their new, widely-available trusted commercial products in order to satisfy trust requirements for sensitive applications; and (c) to provide a basis for specifying security requirements in acquisition specifications. Two types of requirements are delineated for secure processing: (a) specific security feature requirements and (b) assurance requirements."

Report Number:
DoD 5200.28-STD
Publisher:
Date:
1985-12-26
Copyright:
Public Domain
Format:
pdf
Media Type:
application/pdf
URL:
Help with citations