Description

This article is from the Computer Security Evaluation FAQ, by Trusted Product Evaluation Program TPEP@dockmaster.ncsc.mil.

11 What are interpretations? (Computer Security Evaluation)

It is often the case that there are several ways to read a
given statement in the Trusted Computer System Evaluation
Criteria (TCSEC). Interpretations are official statements
articulating which of a number of possible ways to read the
requirement are the acceptable ways for purposes of evaluation
by the TPEP. Interpretations are developed by an group of
highly experienced product evaluators. These interpretations
in proposed form are available for comment by all users of
Dockmaster (see Section 1, Question 6) including vendors with
products in evaluation. After considering the comments and
revising the interpretation as appropriate (sometime through
several rounds of comments and revision) the interpretation is
accepted by the TPEP and officially announced.

Continue to:

• prev: 10 What is the TCSEC? (Computer Security Evaluation)
• Index
• next: 12 What is the Interpreted TCSEC (ITCSEC)? (Computer Security Evaluation)