Initial documentation requirements for a high assurance system: lessons learned
Clark, Paul C.
Irvine, Cynthia E.
Levin, Timothy E.
Nguyen, Thuy D.
Shifflett, David J.
MetadataShow full item record
The Center for Information Systems Security Studies and Research (CISR) is working on a project known as the Trusted Computing Exemplar (TCX). This project is developing a high assurance computing component that will be evaluated at the Common Criteria (CC) Evaluation Assurance Level 7 (EAL7). The processes, documentation, source code, and other evidence to support the evaluation will be openly shared. Documentation is a substantial part of this evidence. Although the CC does state documentation requirements for each EAL, related requirements are often spread across multiple families, and no summarization of documentation requirements is provided. Therefore it was necessary to study the CC carefully to determine such requirements for EAL7. A long list of required documents was developed. However, the TCX project found that when starting from scratch there are particular documents, described herein, that are precursors to serious design work. In addition, it was learned that interpretations of the CC, and the occasional terminology translation were required.
NPS Report NumberNPS-CS-06-007
Showing items related by title, author, creator and subject.
A framework for the management of evolving requirements in software systems supporting network-centric warfare Reynolds, Linda K. (Monterey, California. Naval Postgraduate School, 2006-06);Network-centric warfare (NCW) has changed the way the Department of Defense addresses technological improvements for its military forces. No longer is the emphasis on enhancing the capabilities of a single platform, but ...
Luqi; Zhang, Lynn (2003-09);This paper presents the framework of documentation-driven agile development (DDAD) methodology for high confidence systems of embedded systems. DDAD mainly includes two parts: a documentation management system (DMS) and ...
Luqi; Zhang, Lynn; Berzins, Valdis; Qiao, Ying (2004-12);This paper presents a novel approach for development of complex real-time systems, called the documentation-driven development (DDD) approach. This approach can enhance enhance integration of computer aided software ...