Certification Standards - Using Event-B for Critical Device Software Systems

Biomedical Engineering Reference

In-Depth Information

Ta b l e A . 2

CC user groups (consumers, developers and evaluators)

Consumers

Developers

Evaluators

Part 1:

Introduction and

General Model

For background

information and

reference purposes

For background

information and

reference for the

development of

requirements and

formulating security

specifications for

TOEs

For background

information and

reference purposes.

Guidance structure for

PPs and STs

Part 2: Security

Functional

Requirements

For guidance and

reference when

formulating

statements of

requirements for

security functions

For reference when

interpreting

statements of

requirements and

formulating functional

specifications of

TOEs

Mandatory statement

of evaluation criteria

when determining

whether TOE

effectively meets

claimed security

functions

Part 3: Security

Assurance

Requirements

For guidance when

determining required

levels of assurance

For reference when

interpreting

statements of

assurance

requirements and

determining assurance

approaches of TOEs

Mandatory statement

of evaluation criteria

when determining the

assurance of TOEs

and when evaluating

PPs and STs

A.5 Common Criteria

The Common Criteria (CC) [ 1 ] is an international standard that allows evaluation

of security for IT products and technology. The CC is an international standard

(ISO/IEC 15408) [ 18 ] for computer security certification. The CC is a collection

of existing criteria: European (Information Technology Security Evaluation Criteria

(ITSEC)), US (Trusted Computer Security Evaluation Criteria (TCSEC)) and Cana-

dian (Canadian Trusted Computer Product Evaluation Criteria (CTCPEC)) [ 2 - 4 ].

The CC [ 1 ] contributes for developing an international standard and provides a way

to worldwide mutual recognition and evaluation results.

The Common Criteria enable an objective evaluation to validate that a particular

product or system satisfies a defined set of security requirements. The CC provides

a framework for computer users, vendors and testing organisations for fulfil their re-

quirements and ensure that the process of specification, implementation and testing

of the product has been conducted in a rigorous and standard manner. The CC has

mainly three parts, which has been described in Table A.2 to show the interest of

three different kinds of users (Consumers, Developers and Evaluators) [ 2 ].

Using Event-B for Critical Device Software Systems

Search WWH ::

Custom Search

Home