600.436 High-Assurance
Systems
Fall 01/System Security Realization
12
Descriptive HLD
¨High-level design
shall
–be informal.
–be internally
consistent.
–describe the
structure of the TSF in terms of subsystems.
–describe
the security functionality provided by each subsystem of the TSF.
–identify any
underlying hardware, firmware, and/or software required by the TSF with a presentation of the
functions provided by the
supporting protection mechanisms implemented
in that hardware, firmware, or software.
–identify all
interfaces to the subsystems of the TSF.
–identify which of the interfaces to the subsystems of the TSF are externally visible.