A Guide to Procurement of Trusted Systems: An Introduction to Procurement Initiators on Computer Security Requirements

Abstract

This document, the first of a four volume set on Trusted Systems Procurement, is a guideline designed for those who must identify and satisfy deliverable data requirements associated with security-relevant acquisitions of trusted, stand-alone systems. It identifies what must be complied with, what must be read, what must be written, and what others must be instructed to write. The detailed acquisition process, coupled with the technical complexity of computers, security, and contracting, represents an unsolvable mystery for many. The goal of this document is to help clarify the complex issues. It applies to AIS developers purchasers, or program managers who deliver systems to customers. It specifically supports acquisition of systems from commercial-off-the-shelf (COTS) products on the Evaluated Products List (EPL). It will help those responsible to develop plans and procedures for acquisition of trusted, stand-alone systems. Specifically, it will help identify security-relevant data to be delivered by a contractor.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 01, 1992
Accession Number
ADA393185

Tags

Communities of Interest

  • C4I
  • Counter WMD
  • Cyber
  • Human Systems

DTIC Thesaurus Topics

  • Application Software
  • Business Administration
  • Computer Access Control
  • Computer Programming
  • Computer Programs
  • Computers
  • Cybersecurity
  • Information Security
  • Information Systems
  • Management Personnel
  • Organizational Structure
  • Processing Equipment
  • Risk Analysis
  • Software Development
  • System Software
  • Systems Engineering
  • Test And Evaluation

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Defense Financial Management and Audit.
  • Software Engineering.

Technology Areas

  • Cyber