600.436 High-Assurance
Systems
Fall 01/Protection Profiles
12
Protection Profile Structure:
Security Objectives
Security Objectives
¨IT Security Objectives
–“Executive summary” of security
capabilities provided by the TOE
–Drive the Security Function
requirements
¨Non-IT Objectives
–“Executive summary” of constraints on
how TOE
be operated
–Ultimately drive the details of the
user and administrator documentation