Assurance Considerations for a Highly Robust TOE

Abstract

The U.S. Government Protection Profile for Separation Kernels in Environments Requiring High Robustness (SKPP) is undergoing evaluation. During its authoring process, new extended functional and assurance requirements were introduced to resolve assurance issues associated with TOE hardware, trusted initialization and trusted recovery. Existing trusted recovery requirements emphasize the means of failure handling (i.e., manual vs automated) instead of protecting against further compromise during a recovery from insecure state to secure state. Extended trusted recovery requirements were introduced to require the TSF to attempt self-recovery to a secure state when the TSF detects that it is in an insecure state. To avoid ambiguity, the TOE developer must enumerate pair-wise recovery conditions and their associated actions and provide appropriate evidence that secure states results from the identified action.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Sep 01, 2007
Accession Number
ADA484429

Entities

People

  • Cynthia E. Irvine
  • Michael Mcevilley
  • Thuy D. Nguyen
  • Timothy E. Levin

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Autonomy

DTIC Thesaurus Topics

  • Abstracts
  • Application Software
  • Computer Science
  • Computers
  • Engineering
  • Environment
  • Families (Human)
  • Flow
  • Functional Analysis
  • Information Systems
  • Maintenance
  • Platforms
  • Recovery
  • Security
  • Specifications
  • Standards
  • Vulnerability

Readers

  • Applied Combinatorial Optimization and Logic Circuit Design.
  • Cybersecurity.
  • Software Engineering.