Toward a Comprehensive Infosec Certification Methodology

  title={Toward a Comprehensive Infosec Certification Methodology},
  author={Charles N. Payne and Judith N. Froscher and Carl E. Landwehr},
Accreditors want to know what vulnerabilities will exist if they decide to turn on a system. TCSEC evaluations address products, not systems. Not only the hardware and software of a system are of concern; the accreditor needs to view these components in relation to the environment in which they operate and in relation to the system’s mission and the threats to it. This paper proposes an informal but comprehensive certification approach that can provide the accreditor with the necessary… CONTINUE READING
Highly Cited
This paper has 17 citations. REVIEW CITATIONS


Publications referenced by this paper.
Showing 1-5 of 5 references

Security requirements of navy embedded computers

  • J. Froscher, J. Carroll
  • NRL Memorandum Report 5425, Naval Research…
  • 1984
1 Excerpt

Similar Papers

Loading similar papers…