600.436 High-Assurance Systems
Fall 01/System Security Realization
12
Descriptive HLD
¨High-level design shall
–be informal.
–be internally consistent.
–describe the structure of the TSF in terms of subsystems.
–describe the security functionality provided by each subsystem of the TSF.
–identify any underlying hardware, firmware, and/or software required by the TSF with a presentation of the functions provided by the supporting protection mechanisms implemented in that hardware, firmware, or software.
–identify all interfaces to the subsystems of the TSF.
–identify which of the interfaces to the subsystems of the TSF are externally visible.