it security evaluation why do we need security evaluation
play

IT Security Evaluation Why do we need security evaluation To - PDF document

Sep 30, 2023 •339 likes •535 views

IT Security Evaluation Why do we need security evaluation To provide a basis for specifying security expectations To verify that a computer product/system fulfills the requirements imposed on it To establish a metric for the degree

  1. IT Security Evaluation Why do we need security evaluation � To provide a basis for specifying security expectations � To verify that a computer product/system fulfills the requirements imposed on it � To establish a metric for the degree of trust that can be placed on a security product/system � To guide developers which security is expected 1

  2. Some Security Standards Aiming for evaluation Evaluation process Evaluation Framework Source: Common Evaluation Methodology for Information Technology Security 2

  3. Evaluation principles � Appropriate � The evaluation activities should be appropriate to the intended level of assurance � Impartial � All evaluations shall be free from bias � Objective � Minimum subjective judgment that is possible � Repeatable � Given the same process and TOE the same evidence should yield the same result � Sound � The result should be complete and technical correct Key Parties in evaluation � Evaluator � Conducts the evaluation according to the methodology � Developer � Seeks for evaluation and choose the evaluation criteria � Consumer � Consumes the evaluation report CEM for CC as example Source: Common Evaluation Methodology for Information Technology Security 3

  4. Roles in Evaluation CEM for CC as example Source: Common Evaluation Methodology for Information Technology Security Product/System Evaluation 4

  5. History – Product/System Evaluation Trusted computer evaluation criteria (TCSEC) DoD 1985 UK system security Common criteria confidence levels (CC) 1989 Information Technology ISO 1999 German IT-Security security evaluation criteria criteria (ITSEC) 1989 EU 1991 French „Blue- White-Red“ Book 1989 Canadian Trusted Computer Product evaluation criteria 1993 TCSEC � Scope � Protection of confidentiality of classified information processed by DoD � Oriented towards isolated computer systems (mainframe) � Historic but well known and the base for most other product evaluation standards � Also known as “Orange Book” 5

  6. TCSEC Requirements Security policy What security (access to resoruces) is required in the Functionality system/product What does the system to be secure Accountability How the system links individuals to actions and audit orderly behavior Assurance How certain can we be that the functionality is correct Quality Is the defined security enforced in Documentation the expected way How well is the functionality and the development documented TCSEC Hierachy � Class D – Minimal Protection (unrated) � Class C – Discretionary Protection � C1 Discretionary security protection � C2 Controlled Access protection � Class B – Mandatory Protection � B1 Labeled Security Protection � B2 Structured Protection � B3 Security Domains � Class A – Verified Protection � A1 Verified Design 6

  7. Common Criteria � Harmonized criteria for the international community for evaluation and recognition � ISO IS 15408 � Currently Version 2.1 from August 1999 � Available at: http://csrc.nist.gov/cc/index.html � The scope of the common criteria covers Systems and Products Target of evaluation � Target Of Evaluation (TOE) � An IT product or system and its associated administrator and user guidance documentation that is the subject of an evaluation. 7

  8. TOE Evaluation Process Requirements construction and organization Source: Common criteria 8

  9. Requirement expression Source: Common criteria � Class � A grouping of families that share a common focus � Family � A grouping of components that share security objectives but may differ in emphasis or rigour � Component � The smallest selectable set of elements that may be included in a PP, an ST, or a package Requirement use � Package � A reusable set of either functional or assurance components (e.g. An EAL), combined together to satisfy a set of identified security objectives � Security Target � A set of security requirements and specifications to be used as the basis for evaluation of an identified TOE � Protection Profile � An implementation-independent set of security requirements for a category of TOEs that meet specific consumer needs 9

  10. Functional Security Requirements � Class FAU: Security audit � Class FCO: Communication � Class FCS: Cryptographic support � Class FDP: User data protection � Class FIA: Identification and authentication � Class FMT: Security management � Class FPR: Privacy � Class FPT: Protection of the TSF � Class FRU: Resource utilisation � Class FTA: TOE access � Class FTP: Trusted path/channels Example: FCO Communication � FCO Non-repudiation of origin ensures that the originator of information cannot successfully deny having sent the information. � FCO_NRO.1 Selective proof of origin requires the TSF to provide subjects with the capability to request evidence of the origin of information. � FCO_NRO.2 Enforced proof of origin requires that the TSF always generate evidence of origin for transmitted information. 10

  11. Assurance Requirements � Class ACM: Configuration management � Class ADO: Delivery and operation � Class ADV: Development � Class AGD: Guidance documents � Class ALC: Life cycle support � Class ATE: Tests � Class AVA: Vulnerability assessment Combination of assurance requriements – Evaluation Assurance Level (EAL) � EAL1 - functionally tested Evaluation is not a primary goal during design � EAL2 - structurally tested � EAL3 - methodically tested and checked � EAL4 - methodically designed, tested and reviewed � EAL5 - semiformally designed and tested TOE is designed with evaluation in mind � EAL6 - semiformally verified design and tested � EAL7 - formally verified design and tested 11

  12. Combination of assurance requriements – Evaluation Assurance Levels Source: Common criteria Protection Profile Source: Common criteria 12

  13. Protection Profile � Protection profiles focus on an area specified by the sponsor � No single repository – e.g. US Government PP or German BSI PP � Example areas: � RBAC Profiles � Firewall Profiles � IDS Profiles � Biometric Profiles � PKI Profiles � OS Profiles Protection Profile Title: Role-Based Access Control Protection Profile http://www.cesg.gov.uk/site/iacs/i tsec/media/protection- profiles/RBAC_987.pdf 13

  14. Functional Requirements Functional Requirements 14

  15. Evaluation Preperation � Initiation � The sponsors starts the process � Feasibility study � The evaluator checks if the evaluation can be performed � A list of evaluation deliverables is included where all involved parties agree to Source: Common Evaluation Methodology for Information Technology Security 15

  16. Evaluation Conduct � Evaluation � Review the evaluation deliverables and perform evaluator actions required by the assurance criteria � Observation reports can be generated during the evaluation � Evaluation Technical Report is produce � It contains the verdict and the justification Source: Common Evaluation Methodology for Information Technology Security Evaluation Conclusion � Conformance to CC assessed � The overseer reviews the ETR for conformance with the CC � Evaluation Summary report is generated � It bases on the ETR and includes the result of the overseer review Source: Common Evaluation Methodology for Information Technology Security 16

  17. Process Evaluation Systems Security Engineering Capability Maturity Model � SSE-CMM is a process reference model � SSE-CMM concern the system security engineering activities for a secure product or a trusted system addressing the complete lifecycle � ISO Standard 21827 � Available at: http://www.sse-cmm.org/index.html 17

  18. Process areas - Security Best Practices � PA01 – Administer Security Controls � PA02 – Assess Impact � PA03 – Assess Security Risk � PA04 – Assess ThreatPA05 – Assess Vulnerability � PA06 – Build Assurance Argument � PA07 – Coordinate Security � PA08 – Monitor Security Posture � PA09 – Provide Security Input � PA10 – Specify Security Needs � PA11 – Verify and Validate Security Process areas – Project and Organizational Best Practices � PA12 – Ensure Quality � PA13 – Manage Configurations � PA14 – Manage Project Risk � PA15 – Monitor and Control Technical Effort � PA16 – Plan Technical Effort � PA17 – Define Organization's Systems Engineering Process � PA18 – Improve Organization's Systems Engineering Processes � PA19 – Manage Product Line Evolution � PA20 – Manage Systems Engineering Support Environment � PA21 – Provide Ongoing Skills and Knowledge � PA22 – Coordinate with Suppliers 18

  19. Capability Levels SSE Appraisal Method Source: SSE-CMM 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Why do we need security evaluation To provide a basis for specifying security expectations

Why do we need security evaluation To provide a basis for specifying security expectations

Why do we need security evaluation To provide a basis for specifying security expectations IT Security Evaluation To verify that a computer product/system fulfills the requirements imposed on it To establish a metric for the degree

70 views • 4 slides
Security and Usability: Analysis and Evaluation Ronald Kainda, Ivan Flechais, and A.W. Roscoe

Security and Usability: Analysis and Evaluation Ronald Kainda, Ivan Flechais, and A.W. Roscoe

Introduction Security-usability threat model Security and usability evaluation Summary Security and Usability: Analysis and Evaluation Ronald Kainda, Ivan Flechais, and A.W. Roscoe Oxford University Computing Laboratory Availability,

829 views • 23 slides
Security Evaluation CSM27 Computer Security Dr Hans Georg Schaathun University of Surrey Autumn

Security Evaluation CSM27 Computer Security Dr Hans Georg Schaathun University of Surrey Autumn

Security Evaluation CSM27 Computer Security Dr Hans Georg Schaathun University of Surrey Autumn 2008 Week 8 Dr Hans Georg Schaathun Security Evaluation Autumn 2008 Week 8 1 / 21 Overview Session objectives Discuss advantages and

436 views • 41 slides
A Security Evaluation of Industrial Radio Remote Controllers Federico Maggi, Marco Balduzzi

A Security Evaluation of Industrial Radio Remote Controllers Federico Maggi, Marco Balduzzi

A Security Evaluation of Industrial Radio Remote Controllers Federico Maggi, Marco Balduzzi Jonathan Andersson, Philippe Lin, Stephen Hilt, Akira Urano, and Rainer Vosseler TL;DR SECURITY ANALYSIS FINDINGS TL;DR SECURITY ANALYSIS FIN

908 views • 68 slides
Security By Default A Comparative Security Evaluation of Default Configurations Bernardus A.

Security By Default A Comparative Security Evaluation of Default Configurations Bernardus A.

Security By Default A Comparative Security Evaluation of Default Configurations Bernardus A. Jansen, BSc MSc System and Network Engineering Universiteit van Amsterdam July 3, 2018 B.A. Jansen, BSc (UvA) Security By Default July 3, 2018 1 /

286 views • 15 slides
Formal Analysis of the Entropy / Security Trade-off in First-Order Masking Countermeasures

Formal Analysis of the Entropy / Security Trade-off in First-Order Masking Countermeasures

Introduction RSM: Rotating Sboxes Masking Information Theoretic Evaluation of RSM Security Evaluation of RSM against CPA and 2O-CPA Conclusions and Perspectives Formal Analysis of the Entropy / Security Trade-off in First-Order Masking

539 views • 38 slides
Evaluating Systems Chapter 22 Computer Security: Art and Science , 2 nd Edition Version 1.0

Evaluating Systems Chapter 22 Computer Security: Art and Science , 2 nd Edition Version 1.0

Evaluating Systems Chapter 22 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 22-1 Outline Goals of formal evaluation Trusted Computer Security Evaluation Criteria (TCSEC), 19831999 International Efforts and

1.32k views • 101 slides
Deep Learning For Embedded Security Evaluation Emmanuel PROUFF Joint work with Ryad Benadjila,

Deep Learning For Embedded Security Evaluation Emmanuel PROUFF Joint work with Ryad Benadjila,

Deep Learning For Embedded Security Evaluation Deep Learning For Embedded Security Evaluation Emmanuel PROUFF Joint work with Ryad Benadjila, Eleonora Cagli (CEA LETI), C ecile Dumas (CEA LETI), Houssem Maghrebi (UL), Loic Masure (CEA LETI),

932 views • 71 slides
Performance Evaluation of Performance Evaluation of Security- -Aware Routing Protocols Aware

Performance Evaluation of Performance Evaluation of Security- -Aware Routing Protocols Aware

Performance Evaluation of Performance Evaluation of Security- -Aware Routing Protocols Aware Routing Protocols Security for Clustered Mobile Ad Hoc for Clustered Mobile Ad Hoc Networks Networks Gregory S. Yovanof - - Kerem Kerem Ericsi

1.16k views • 26 slides
SoK: Security Evaluation of Home-based IoT Deployments Omar Alrawi , Chaz Lever, Fabian Monrose,

SoK: Security Evaluation of Home-based IoT Deployments Omar Alrawi , Chaz Lever, Fabian Monrose,

SoK: Security Evaluation of Home-based IoT Deployments Omar Alrawi , Chaz Lever, Fabian Monrose, Manos Antonakakis 1 2 Alexa, unlock the front door. 3 Internet of Things 4 5 Prior Work Security Analysis of Emerging Smart Home

592 views • 22 slides
Security Evaluation of Home-based IoT Deployments Astrolavos Research Lab at Georgia Tech

Security Evaluation of Home-based IoT Deployments Astrolavos Research Lab at Georgia Tech

Omar Alrawi Security Evaluation of Home-based IoT Deployments Astrolavos Research Lab at Georgia Tech We specialize in Network Security Measurements Work is presented on behalf of my team Omar Alrawi PhD Student (me) About

340 views • 33 slides
User Interface Evaluation Empirical evaluation Heuristic evaluation 1 CS 349 - UI evaluation

User Interface Evaluation Empirical evaluation Heuristic evaluation 1 CS 349 - UI evaluation

User Interface Evaluation Empirical evaluation Heuristic evaluation 1 CS 349 - UI evaluation When does UI evaluation happen? Design Testing and Implementation Development evaluation Testing 2 CS 349 - UI evaluation Types of tests

820 views • 20 slides
Provable Security Evaluation of Structures against Impossible Differential and Zero Correlation

Provable Security Evaluation of Structures against Impossible Differential and Zero Correlation

Outline Introduction Preliminaries Impossible differential Conclusion Provable Security Evaluation of Structures against Impossible Differential and Zero Correlation Linear Cryptanalysis Jian Guo Nanyang Technological University, Singapore

796 views • 51 slides
Evaluation DEMMS: Evaluation of Multimedia What are the Evaluation lectures about: When

Evaluation DEMMS: Evaluation of Multimedia What are the Evaluation lectures about: When

Evaluation DEMMS: Evaluation of Multimedia What are the Evaluation lectures about: When to evaluate Systems What kinds of evaluation are possible Predictive evaluations Robert Villa Traditional user experiments

551 views • 10 slides
A Study on Smart Card Security A Study on Smart Card Security Evaluation Criteria for Evaluation

A Study on Smart Card Security A Study on Smart Card Security Evaluation Criteria for Evaluation

[ICCSA 2004] 2004] [ICCSA A Study on Smart Card Security A Study on Smart Card Security Evaluation Criteria for Evaluation Criteria for Side Channel Attacks Side Channel Attacks Presented at the workshop ICCSA ICCSA 200 2004 4, ,

404 views • 26 slides
Cyber Security Evaluation for Nuclear I&C Systems Corresponding to V-Model Jiye Jeong ,

Cyber Security Evaluation for Nuclear I&C Systems Corresponding to V-Model Jiye Jeong ,

Transactions of the Korean Nuclear Society Virtual Spring Meeting July 9-10, 2020 Cyber Security Evaluation for Nuclear I&C Systems Corresponding to V-Model Jiye Jeong , Gyunyoung Heo Department of Nuclear Engineering, Kyung Hee

399 views • 3 slides
TCP/IP Use in Wireless Sensor Networks Livio Sgier Roadmap Introduction and Motivation

TCP/IP Use in Wireless Sensor Networks Livio Sgier Roadmap Introduction and Motivation

TCP/IP Use in Wireless Sensor Networks Livio Sgier Roadmap Introduction and Motivation TCP/IP in General TCP/IP in Wireless Sensor Networks Summary and Conclusion Page 2 Roadmap Introduction and Motivation TCP/IP in

245 views • 23 slides
Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work

Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work

Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work with: Li J W Li, J. Wang, Pongsajapan, Tan, Tang, M. Wang P j T T M W Outline Background Layering as optimization decomposition L

932 views • 47 slides
Making the Linux TCP stack more extensible with eBPF Viet-Hoang Tran, Olivier Bonaventure (INL,

Making the Linux TCP stack more extensible with eBPF Viet-Hoang Tran, Olivier Bonaventure (INL,

Making the Linux TCP stack more extensible with eBPF Viet-Hoang Tran, Olivier Bonaventure (INL, UCLouvain) Supporting new TCP option The standard way to extend TCP But implementation? requires kernel changes Supporting new TCP option is hard

307 views • 28 slides
TCP Theory Mark Handley Professor of Networked Systems UCL Computer Science Dept. What is TCP?

TCP Theory Mark Handley Professor of Networked Systems UCL Computer Science Dept. What is TCP?

TCP Theory Mark Handley Professor of Networked Systems UCL Computer Science Dept. What is TCP? Transmission Control Protocol Standardized in 1981 in RFC 793 Tweaked endlessly ever since. Provides a reliable bytestream abstraction

912 views • 39 slides
Your First Guide to secure Linux August 12, 2010 Toshiharu Harada haradats@nttdata.co.jp

Your First Guide to secure Linux August 12, 2010 Toshiharu Harada haradats@nttdata.co.jp

Your First Guide to secure Linux August 12, 2010 Toshiharu Harada haradats@nttdata.co.jp NTT DATA CORPORATION Abstract There are two types of people in the world. Those who are security

872 views • 84 slides
Incident of the Week New logging functionality with insufficient access control Accessible

Incident of the Week New logging functionality with insufficient access control Accessible

Incident of the Week New logging functionality with insufficient access control Accessible to any application with internet access (i.e., almost all of them) Patching the issue is delayed because the patch needs to be tested with

765 views • 53 slides
Computer and Network Security Trusted Operating Systems R. E. Newman Computer & Information

Computer and Network Security Trusted Operating Systems R. E. Newman Computer & Information

Computer and Network Security Trusted Operating Systems R. E. Newman Computer & Information Sciences & Engineering University Of Florida Gainesville, Florida 32611-6120 nemo@cise.ufl.edu Trusted Operating Systems (Pfleeger Ch. 7)

653 views • 29 slides
Seminar Term Paper Certification of Hardware and Software Formal Methods for Fun and Profit

Seminar Term Paper Certification of Hardware and Software Formal Methods for Fun and Profit

Seminar Term Paper Certification of Hardware and Software Formal Methods for Fun and Profit Summer Semester 2005 Theme: Certification of Hardware and Software Supervisor: Jr. Prof. Beckert Presented by: Kiptoo A. Kiprop Registration

1.02k views • 20 slides

More recommend