The chapter discusses various evaluation standards such as the Common Criteria (CC), Federal Information Processing Standards (FIPS), Trusted Computer System Evaluation Criteria (TCSEC), and Information Technology Security Evaluation Criteria (ITSEC), emphasizing their significance in assessing product security. It highlights three key elements in security evaluation: functionality, effectiveness, and assurance, with functionality being crucial for product acceptance. The chapter also explores how to align the evaluation process with the evolving threat environment. These standards provides structured methods for addressing modern security challenges and serve as benchmarks for implementing proactive security measures and ensuring PCI compliance to tackle emerging threats.
Author (s) Details
Rachel John Robinson
Department Computer Science, IU International University of Applied
Science, Germany.
Please see the book here:- https://doi.org/10.9734/bpi/mcscd/v6/2473
No comments:
Post a Comment