TY - GEN
T1 - Formal security policy model for a common criteria evaluation
AU - Park, Junkil
AU - Choi, Jin Young
PY - 2007
Y1 - 2007
N2 - The Common Criteria(CC) is an international standard for evaluating secure computer systems. The CC defines seven distinct Evaluation Assurance Levels (EALs). The three highest EALs, the so-called high-assurance levels, require some degree of formalism in development. The Security Policy Model (SPM) is one of the documents required in formalism in high-assurance levels. It is difficult to develop the formal SPM because the CC doesn't specify how to make the document and industries have rarely published it. This paper shows a guideline for the development formal SPM and provides an example of formal SPM using Z, and proves consistency and completeness of the SPM.
AB - The Common Criteria(CC) is an international standard for evaluating secure computer systems. The CC defines seven distinct Evaluation Assurance Levels (EALs). The three highest EALs, the so-called high-assurance levels, require some degree of formalism in development. The Security Policy Model (SPM) is one of the documents required in formalism in high-assurance levels. It is difficult to develop the formal SPM because the CC doesn't specify how to make the document and industries have rarely published it. This paper shows a guideline for the development formal SPM and provides an example of formal SPM using Z, and proves consistency and completeness of the SPM.
UR - http://www.scopus.com/inward/record.url?scp=34347263789&partnerID=8YFLogxK
U2 - 10.1109/ICACT.2007.358355
DO - 10.1109/ICACT.2007.358355
M3 - Conference contribution
AN - SCOPUS:34347263789
SN - 8955191316
SN - 9788955191318
T3 - International Conference on Advanced Communication Technology, ICACT
SP - 277
EP - 281
BT - 9th International Conference on Advanced Communication Technology, ICACT 2007
T2 - 9th International Conference on Advanced Communication Technology, ICACT 2007
Y2 - 12 February 2007 through 14 February 2007
ER -