An Approach to Determining Computer Security Requirements for Navy Systems

Abstract

The DoD Trusted Computer System Evaluation Criteria (The Orange Book) define requirements corresponding to specified levels of security functions and assurance. These do not (The Orange Book), however, help determine what level system is required for a specific environment. It is at present left to the system is expected to be used. This report proposes a straightforward technique a developer can use to map a specific system architecture and application environment to a particular requirement level as defined in the Criteria. This technique is applicable throughout the system life cycle, so that security requirements can be updated as changes to system structure and function occur.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
May 13, 1985
Accession Number
ADA155750

Entities

People

  • Carl E. Landwehr
  • H. O. Lubbes

Organizations

  • United States Naval Research Laboratory

Tags

Communities of Interest

  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Biodiesels
  • Classification
  • Command And Control
  • Computer Network Security
  • Computer Programming
  • Computers
  • Cybersecurity
  • Cycles
  • Databases
  • Department Of Defense
  • Environment
  • Life Cycles
  • Local Area Networks
  • Ocean Surveillance
  • Personal Computers
  • Risk Factors
  • Security

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Logistics and Supply Chain Management.
  • Theoretical Analysis.

Technology Areas

  • Cyber