Abstract
In recent years there has been increasing demand for security evaluation of information technology (IT) products and systems. In contrast to conformance testing, however, where testing can take place against a formal specification, security evaluation is still in a very subjective stage. As much objectivity as possible though remains a primary goal of security evaluation. As well, a security evaluation of an IT product or system considers both security correctness and effectiveness aspects, a distinction conformance testing does not recognize. So security evaluation and conformance testing approaches differ substantially.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
US Department of Defense: Trusted Computer Systems Evaluation Criteria (TCSEC), DoD 5200.28-STD, Dec. 85
Information Technology Security Evaluation Criteria (ITSEC), Provisional Harmonised Criteria, V 1.2, June 1991
Information Technology Security Evaluation Manual (ITSEM), Draft V0.2, 1992
K. Thompson: Reflections on Trusting Trust, CACM, Vol. 27, No. 8, Aug. 84, pp. 761–763
ISO: LOTOS — A Formal Description Technique Based on the Temporal Ordering of Observational Behaviour, ISO/TC97/SC21, IS 8807, 1988
ISO: OSI — Conformance Testing Methodology and Framework — Part 1: General Concepts (ISO 9646–1)
R. Cadwallader et al.: Infosec 92 S2013 Security Investigations Testing & Accreditation Review (SITAR) Final Report to the Commission of the European Communities, Jan. 93
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1993 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Jürgensen, W. (1993). IT Security Evaluation Improvement by Application of Testing. In: Reichel, H. (eds) Informatik — Wirtschaft — Gesellschaft. Informatik aktuell. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-78486-6_59
Download citation
DOI: https://doi.org/10.1007/978-3-642-78486-6_59
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-57192-6
Online ISBN: 978-3-642-78486-6
eBook Packages: Springer Book Archive