Determining Security Requirements for Complex Systems with the Orange Book

Abstract

The DoD Trusted Computer System Evaluation Criteria define requirements corresponding to specified levels of security functions and assurance. They do not, however, help determine what level system is required for a specific environment. A simplistic technique has been proposed for this purpose that takes into account only the classification of the most sensitive information processed by a system, the clearance of its least-cleared user, and the environment in which it was developed. This paper offers a straightforward but richer technique a developer can use to map a specific system architecture and application environment to a particular requirement level as defined in the Criteria. It accounts for differences in functions provided to different users and the ways users can invoke those functions, as well as for users' clearances and the sensitivity of data. This technique is applicable throughout the system life cycle, so that security requirements can be updated as changes to system structure and function occur.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 1985
Accession Number
ADA465540

Entities

People

  • Carl E. Landwehr
  • H. O. Lubbes

Organizations

  • United States Naval Research Laboratory

Tags

Communities of Interest

  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Abstracts
  • Classification
  • Clearances
  • Complex Systems
  • Computer Programming
  • Computer Science
  • Computers
  • Cybersecurity
  • Databases
  • Environment
  • Life Cycles
  • Local Area Networks
  • Personal Computers
  • Risk Factors
  • Security
  • Test And Evaluation
  • Unauthorized Disclosure

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Database Systems and Applications
  • Systems Analysis and Design