The System Security Realization

Role of the System Security Realization

Points to Remember

ADV_HLD – High Level Design

Definition

Aspects of the Family

Subsystems

Subsystem Security Functionality

External IT Environment Dependencies

Interactions Between Subsystems

Externally Visible Subsystem Interfaces

Descriptive HLD

Security enforcing HLD

Semiformal HLD

Semiformal High-level Explanation

Formal HLD

ADV_LLD – Low Level Design

Definition

Aspects of the Family

TSF Modules

Module Interrelationships

Module Interfaces & Behavior

Externally Visible Interfaces

TSP-Enforcing Functions

Descriptive Low Level Design

Semiformal Low Level Design

Formal Low Level Design

ADV_INT – TSF Internals

Definition

Aspects of the Family

Modularity

Layering

Complexity Minimization

Functionality Minimization

Modularity

Reduction of Complexity

Minimization of Complexity

ADV_IMP – Implementation Representation

Definition

Aspects of the Family

Implementation Representation

Implementation Structuring

Internal Consistency

Subset of TSF Implementation

TSF Implementation

Structured TSF Implementation

ADV_RCR – Representation Correspondence

Definition

Aspects of the Family

Pair-wise Correspondence

All Relevant Security Functionality

Exclusion of TSP or TSP Model

Informal Correspondence

Semiformal Correspondence

Formal Correspondence

Techniques

Stepwise Refinement

Stepwise Refinement (2)

Reverse Engineering

Reverse Engineering (2)

Interviews

Interviews (2)

Interviews (3)

Hybrids

Hybrids (2)