Security Target

Security Target

In an IT product certification process according to the Common Criteria (CC), a Security Target (ST) is the central document, typically provided by the developer of the product,that specifies security evaluation criteria to substantiate the vendor's claims for the product's security properties.

An ST defines information assurance security requirements for the given information system product, which is called the Target of Evaluation (TOE). An ST is a complete and rigorous description of a security problem in terms of TOE description, threats, assumptions, security objectives, security functional requirements (SFRs), security assurance requirements (SARs), and rationales. The SARs are typically given as a number 1 through 7 called Evaluation Assurance Level (EAL), indicating the depth and rigor of the security evaluation, usually in the form of supporting documentation and testing, that the product meets the SFRs.

An ST contains some (but not very detailed) implementation-specific information that demonstrates how the product addresses the security requirements.It may refer to one or more Protection Profiles (PPs). In such a case, the ST must fulfill the generic security requirements given in each of these PPs, and may define further requirements.


Wikimedia Foundation. 2010.

Игры ⚽ Нужен реферат?

Look at other dictionaries:

  • Target hardening — is a term chiefly used by police offices and those working in security, referring to the strengthening of the security of building in order to reduce or minimising the risk of attack or theft. [cite… …   Wikipedia

  • Security Assertion Markup Language — (SAML) is an XML based standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). SAML is a product… …   Wikipedia

  • Security engineering — is a specialized field of engineering that focuses on the security aspects in the design of systems that need to be able to deal robustly with possible sources of disruption, ranging from natural disasters to malicious acts. It is similar to… …   Wikipedia

  • Security guard — Private factory guard Occupation Activity sectors Security Description A security guard (or security officer) is a person who is paid to protect pro …   Wikipedia

  • Security — is the condition of being protected against danger, loss, and criminals. In the general sense, security is a concept similar to safety. The nuance between the two is an added emphasis on being protected from dangers that originate from outside.… …   Wikipedia

  • Security theater — consists of security countermeasures intended to provide the feeling of improved security while doing little or nothing to actually improve security. [cite book last = Schneier first = Bruce authorlink = Bruce Schneier title = Beyond Fear:… …   Wikipedia

  • TARGET — (Trans European Automated Real time Gross Settlement Express Transfer System) was an interbank payment system for the real time processing of cross border transfers throughout the European Union. It included 16 national real time gross settlement …   Wikipedia

  • Target date fund — A Target date fund also known as a lifecycle or age based fund is a collective investment scheme, usually a mutual fund, designed to provide a simple investment solution through a portfolio whose asset mix becomes more conservative as the target… …   Wikipedia

  • target — tar|get1 W2S3 [ˈta:gıt US ˈta:r ] n ▬▬▬▬▬▬▬ 1¦(aim)¦ 2¦(object of attack)¦ 3¦(object of an action)¦ 4¦(shooting)¦ 5 target audience/group/area etc 6 target language ▬▬▬▬▬▬▬ [Date: 1200 1300; : Old French; Origin: targette, from targe …   Dictionary of contemporary English

  • target — 1 noun (C) 1 OBJECT OF ATTACK an object, person, or place that is deliberately chosen to be attacked (+ for/of): The docks are the main target for the bombing raids. | soft/easy target: Cars without security devices are an easy target for the… …   Longman dictionary of contemporary English

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”