lotus



previous page: 25  What is a class? (Computer Security Evaluation)
  
page up: Computer Security Evaluation FAQ
  
next page: 27  What is a Network Security Architecture Design (NSAD) document? (Computer Security Evaluation)

26 What is a network component? (Computer Security Evaluation)




Description

This article is from the Computer Security Evaluation FAQ, by Trusted Product Evaluation Program TPEP@dockmaster.ncsc.mil.

26 What is a network component? (Computer Security Evaluation)

A "network component" is the target of evaluation for a Trusted
Network Interpretation (TNI) evaluation (see Section II,
Question 9) done against appendix A of the TNI. These
"network component" evaluations allocate basic requirements
(Mandatory Access Control (MAC); Discretionary Access Control
(DAC); Audit; and Identification and Authentication) to
components of a "network system". Each component may be
evaluated in isolation. The TPEP does evaluate degenerate TNI
components that independently meet all basic requirements (but
nevertheless have an interface to other, perhaps identical
components), but has not evaluated any degenerate TNI component
that met none of the basic requirements (relying totally on
other components for the security features). The TPEP is
currently developing a more integrated approach to the evaluation
of TNI components. The preliminary report of the changes
envisioned are available in postscript at
<http://www.radium.ncsc.mil/tpep/library/process_documents/cwg-draft.ps>.

 

Continue to:













TOP
previous page: 25  What is a class? (Computer Security Evaluation)
  
page up: Computer Security Evaluation FAQ
  
next page: 27  What is a Network Security Architecture Design (NSAD) document? (Computer Security Evaluation)