Security functional requirements
Security requirements in the context of the international standard Common Criteria for computer security certification (also referred to as (ISO/IEC 15408)) consist of two groups of requirements:
1. the security functional requirements (SFRs), which are defined as "a translation of the security objectives for the TOE (Target of Evaluation) into a standardised language".[1]; and
2. the security assurance requirements (SARs): "a description of how assurance is to be gained that the TOE meets the SFRs"[2]
References
- ↑ "Common Criteria for Information Technology Security Evaluation, Part 1: Introduction and general model, April 2017, Version 3.1, Revision 5, paragraph 410, section a) under "A.9 Security Requirements"" (PDF).
- ↑ "Common Criteria for Information Technology Security Evaluation, Part 1: Introduction and general model, April 2017, Version 3.1, Revision 5, paragraph 410, section b) under "A.9 Security Requirements"" (PDF).
External links
This article "Security functional requirements" is from Wikipedia. The list of its authors can be seen in its historical and/or the page Edithistory:Security functional requirements. Articles copied from Draft Namespace on Wikipedia could be seen on the Draft Namespace of Wikipedia and not main one.
