High Robustness Requirements in a Common Criteria Protection Profile

Nguyen, Thuy D.; Levin, Timothy E.; Irvine, Cynthia E.

Download

06paper_highrobust.pdf (239.4Kb)

Download Record

Download to EndNote/RefMan (RIS)

Download to BibTex

Author

Nguyen, Thuy D.

Levin, Timothy E.

Irvine, Cynthia E.

Date

2006-04-00

Metadata

Show full item record

Abstract

The development of a Common Criteria protection profile for high-robustness separation kernels requires explicit modifications of several Common Criteria requirements as well as extrapolation from existing (e.g., medium robustness) guidance and decisions. The draft U.S. Government Protection Profile for Separation Kernels in Environments Requiring High Robustness (SKPP) is intended to be applicable to a class of products (the target of evaluation, or TOE) that includes, but is not limited to, real time and embedded systems. This paper describes certain SKPP concepts and requirements and provides underlying motivations and rationale for their inclusion in the SKPP. Primary areas of focus are the security requirements regarding information flow, dynamic configuration, and the application of the principle of least privilege to restrict actions of active entities. Keywords: common criteria, separation kernel, high robustness, dynamic configuration, least privilege.

Rights

This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.

URI

http://hdl.handle.net/10945/7141