Abstract
In this paper is expanded a process of evaluation by means of which to determine the functional security requirements of an Information Technology (IT) system. The said process of evaluation has been developed on the bases of two sources currently used to determine the functional security requirements obtaining to an IT system; the first being the new foundation for information security, namely a framework that defines information security as a whole, and the second being the Common Criteria which are used to place information security functions within a framework. These two frameworks are used conjointly to determine the functional security requirements of an IT system. The two frameworks are also defined in such a way as to enable automation of the evaluation process.
Chapter PDF
Similar content being viewed by others
Keywords
References
CSE (1993), The Canadian Trusted Computer Product Evaluation Criteria.
Eloff, J.H.P et al. (1993) A comparative framework for risk analysis methods, Computers & Security, 12, 597–603.
Badenhorst, K.P (1994) A formal approach to the optimisation of information technology risk management, 1994.
CC (1994), Common Criteria (preliminary draft).
Pfleeger, C.P. (1989) Security in computing.
Murray, W.H. (1995) Security should pay: It should not cost, in Proceedings of the IFIP/Sec `95, 1995.
Strous, L. (1994) Security Evaluation Criteria, Computers & Security, 13 379–384.
Parker D. (1995), A new framework for information security to avoid information anarchy, in Proceedings of the IFIP/Sec 95, 1995.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1997 Springer Science+Business Media Dordrecht
About this chapter
Cite this chapter
Kruger, R., Eloff, J.H.P. (1997). A Common Criteria framework for the evaluation of Information Technology systems security. In: Yngström, L., Carlsen, J. (eds) Information Security in Research and Business. IFIP — The International Federation for Information Processing. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35259-6_16
Download citation
DOI: https://doi.org/10.1007/978-0-387-35259-6_16
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-5481-0
Online ISBN: 978-0-387-35259-6
eBook Packages: Springer Book Archive