TCSEC: The Orange Book.

Slides:



Advertisements
Similar presentations
Configuration management
Advertisements

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
TCSEC: The Orange Book. TCSEC Trusted Computer System Evaluation Criteria.
PKE PP Mike Henry Jean Petty Entrust CygnaCom Santosh Chokhani.
Software Quality Assurance Plan
Access Control Chapter 3 Part 3 Pages 209 to 227.
Effective Design of Trusted Information Systems Luděk Novák,
Access Control Methodologies
Secure Operating Systems Lesson 0x11h: Systems Assurance.
1 Evaluating Systems CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 6, 2004.
Security Controls – What Works
1 For System Administrators INFORMATION INFORMATION SYSTEM SECURITY INFORMATION INFORMATION SYSTEM SECURITY.
Understanding Active Directory
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
Security Engineering II. Problem Sources 1.Requirements definitions, omissions, and mistakes 2.System design flaws 3.Hardware implementation flaws, such.
2  A system can protect itself in two ways: It can limit who can access the system. This requires the system to implement a two-step process of identification.
Department Of Computer Engineering
Database Auditing Models Dr. Gabriel. 2 Auditing Overview Audit examines: documentation that reflects (from business or individuals); actions, practices,
Effectively Integrating Information Technology (IT) Security into the Acquisition Process Section 5: Security Controls.
Module 9 Configuring Server Security Compliance. Module Overview Securing a Windows Infrastructure Overview of EFS Configuring an Audit Policy Overview.
Lesson 8-Information Security Process. Overview Introducing information security process. Conducting an assessment. Developing a policy. Implementing.
1 Preparing a System Security Plan. 2 Overview Define a Security Plan Pitfalls to avoid Required Documents Contents of the SSP The profile Certification.
Security Baseline. Definition A preliminary assessment of a newly implemented system Serves as a starting point to measure changes in configurations and.
ISA 562 Internet Security Theory & Practice
Asset & Security Management Chapter 9. IT Asset Management (ITAM) Is the process of tracking information about technology assets through the entire asset.
 To explain the importance of software configuration management (CM)  To describe key CM activities namely CM planning, change management, version management.
Chapter 5 – Designing Trusted Operating Systems  What makes an operating system “secure”? Or “trustworthy?  How are trusted systems designed, and which.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
Security Architecture and Design Chapter 4 Part 3 Pages 357 to 377.
Chapter 5 Network Security
Chapter 2 Securing Network Server and User Workstations.
Trusted OS Design and Evaluation CS432 - Security in Computing Copyright © 2005, 2010 by Scott Orr and the Trustees of Indiana University.
Access Controls Henry Parks SSAC 2012 Presentation Outline Purpose of Access Controls Access Control Models –Mandatory –Nondiscretionary/Discretionary.
CSCE 548 Secure Software Development Security Operations.
Security fundamentals Topic 2 Establishing and maintaining baseline security.
SAM-101 Standards and Evaluation. SAM-102 On security evaluations Users of secure systems need assurance that products they use are secure Users can:
Access Control / Authenticity Michael Sheppard 11/10/10.
Trusted Operating Systems
Configuring, Managing and Maintaining Windows Server® 2008 Servers Course 6419A.
High Assurance Products in IT Security Rayford B. Vaughn, Mississippi State University Presented by: Nithin Premachandran.
Personal System Administration CS5493. SA SA is a Systems Administrator The SA is responsible for maintaining the overall wellbeing of a computing system.
Chapter 21: Evaluating Systems Dr. Wayne Summers Department of Computer Science Columbus State University
The NIST Special Publications for Security Management By: Waylon Coulter.
Information Security Office: Function, Alignment in the Organization, Goals, and Objectives Presentation to Sacramento PMO March 2011 Kevin Dickey.
CSCE 727 Awareness and Training Secure System Development and Monitoring.
Access Controls Mandatory Access Control by Sean Dalton December 5 th 2008.
Chap5: Designing Trusted Operating Systems.  What makes an operating system “secure”? Or “trustworthy”?  How are trusted systems designed, and which.
Chapter 8 – Administering Security  Security Planning  Risk Analysis  Security Policies  Physical Security.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
1 Security Architecture and Designs  Security Architecture Description and benefits  Definition of Trusted Computing Base (TCB)  System level and Enterprise.
Security Architecture and Design Chapter 4 Part 4 Pages 377 to 416.
Dr. Ir. Yeffry Handoko Putra
Software Project Configuration Management
Security Models and Designing a Trusted Operating System
Module Overview Installing and Configuring a Network Policy Server
IS4550 Security Policies and Implementation
Official levels of Computer Security
The Privacy Cycle A Five-Step Process to Improve Your Privacy Culture
Chapter 19: Building Systems with Assurance
UConn NIST Compliance Project
THE ORANGE BOOK Ravi Sandhu
County HIPAA Review All Rights Reserved 2002.
SECURITY IN THE LINUX OPERATING SYSTEM
Operating System Security
EDUCAUSE Security Professionals Conference 2018 Jason Pufahl, CISO
Guest Lecture in Acc 661 (Spring 2007) Instructor: Christopher Brown)
Drew Hunt Network Security Analyst Valley Medical Center
PLANNING A SECURE BASELINE INSTALLATION
Access Control What’s New?
Presentation transcript:

TCSEC: The Orange Book

TCSEC Purpose Trusted Computer System Evaluation Criteria Purpose: Provides the basic requirements for assessing the effectiveness of computer security controls built into a computer system. Used to evaluate, classify, and select systems being considered as platforms for computing resources.

TCSEC: Orange Book Metrics – provides a metric (classification) for determining the level of trust assigned to a computing system. Guidance – provides guidance on how to design a trusted computing system along with their associated data and services

Orange Book: Metrics Measurement of a system's security is quantified using a classification system. The Classes are: D - C1 & C2 B1, B2, B3 A1 A is more secure than D 2 is more secure than 1.

Orange Book: Metrics D applies to any system that fails to meet any of the higher level security classes. The other levels have increasing security requirements. A1 systems are rare.

Metrics: C1 Identification and authentication (user id & password) Separation of users and data DAC – capable of enforcing access controls Example: Basic Unix/Linux OS

Metrics: C2 C1 plus More sophisticated DAC Audit trails System documentation and user manuals.

Metrics B1 C2 plus Use of hierarchical sensitivity labels Discovered weaknesses must be mitigated

Metrics B2 B1 plus Security policy must be defined and documented Access controls for all subjects and objects

Metrics: B3 B2 plus Automated imminent intrusion detection, notification and response.

Metrics: A1 B3 + System is capable of secure distribution (can be transported and delivered to a client with the assurance of being secure)

Orange Book Security Criteria Security Policy Accountability Assurance Documentation

1. Security Policy The set of rules and practices that regulate how an organization manages, protects, and distributes information.

1. Security Policy The policy is organized into subjects and objects. Subjects act upon objects Subjects – processes and users. Objects – data, directories, hardware, applications A well defined protocol determines if a subject can be permitted access to an object.

2. Accountability The responsibilities of all who come in contact with the system must be well defined. Identification (… the process to identify a user) Authentication (… as in, authenticated to access specific resources) Auditing (...accumulating and reviewing log information and all actions can be traced to a subject)

3. Assurance The reasonable expectation that the security policy of a trusted system has been implemented correctly. Assurance is organized into Operational assurance Life-cycle assurance

3a. Organizational Assurance Security policy is maintained in the overall design and operation of the system. Example: Users of the system have an assurance that access controls are enforced

3b. Life-cycle Assurance Insuring the system continues to meet the security requirements over the lifetime of the system. Updates to the software and hardware must be considered The expectation that the system remains operational (is available) over its lifetime

4. Documentation Requirements Security Features User's Guide Trusted Facility Manual Test Documentation Design Documentation

Documentation: Security Features User's Guide Aimed at the ordinary (non-privileged) users. General usage policy *Instructions on how to effectively use the system Description of relevant security features

Documentation: Trusted Facility Manual Aimed at the S.A. Staff How the system is configured and maintained Includes the day-to-day required activities

Documentation: Test Documentation Instructions on how to test the required security mechanisms

Documentation: Design Documentation Define the boundaries of the system A complete description of the hardware and software. Complete system design specifications Description of access controls

The Orange Book The Orange book has been superseded by the Common Criteria

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.