论文信息 - Certification and evaluation: A security economics perspective

Certification and evaluation: A security economics perspective

There has been some discussion in the industrial control system security community of evaluation and certification. There are already at least two independent third party evaluators, and some have advocated Common Criteria certification of products used in critical systems. The broader IT security community has considerable experience of evaluation and certification, which we seek to summarise and share in this paper. Certification is not a silver bullet, and can very easily end up as spin rather than substance: as ‘security theatre’ designed to reassure customers or regulators rather than a genuine risk-reduction mechanism. It can also be very expensive, and once entrenched it can impose deadweight costs on industry that are difficult to eliminate even when certification processes are widely seen as failing. We discuss a number of further issues such as perverse incentives, usability and liability and argue that the industry should proceed with great caution.

Ross J. Anderson | Shailendra Fuloria

[1] Mike Bond,et al. Cryptographic Processors-A Survey , 2006, Proceedings of the IEEE.

[2] Ross J. Anderson,et al. Security Economics and Critical National Infrastructure , 2009, WEIS.

[3] P. S. Tasker,et al. DEPARTMENT OF DEFENSE TRUSTED COMPUTER SYSTEM EVALUATION CRITERIA , 1985 .

[4] Steven J. Murdoch,et al. Thinking Inside the Box: System-Level Failures of Tamper Proofing , 2008, 2008 IEEE Symposium on Security and Privacy (sp 2008).

[5] James P Anderson,et al. Computer Security Technology Planning Study , 1972 .

[6] Benjamin Edelman,et al. Adverse selection in online "trust" certifications , 2009, WEIS.

[7] John M. Boone,et al. INTEGRITY-ORIENTED CONTROL OBJECTIVES: PROPOSED REVISIONS TO THE TRUSTED COMPUTER SYSTEM EVALUATION CRITERIA (TCSEC), DoD 5200.28-STD , 1991 .

[8] Ross J. Anderson. Security engineering - a guide to building dependable distributed systems (2. ed.) , 2001 .