600.436 High-Assurance
Systems
Fall 01/System Security Realization
34
Functionality Minimization
¨Goal is to minimize the amount of functionality in
the TSF that doesn’t enforce the TSP, thus:
–reducing the possibility of flaws in
the TSF, and
–with modularity and layering, allowing
the evaluator
to focus only on that functionality which is necessary for TSP
enforcement
¨Also allows cleaner mapping from
security policy model to implementation