Security Evaluation and Testing - Past, Present and Future
暂无分享,去创建一个
IT Security Evaluation started with the US DoD Trusted Computer Security Evaluation Criteria — commonly known as ‘The Orange Book’ — in 1983. This was the original and seminal work in this field. Even though it was based on research conducted in the late 1970s (The Bell-Lapadula Model), it remained the predominant standard for some 10 years until overtaken by the European IT Security Evaluation Criteria (ITSEC). The need for a common international standard drove the development of the Common Criteria, which has now been the predominant standard for 10 years.
[1] Michael J. Nash,et al. The Chinese Wall security policy , 1989, Proceedings. 1989 IEEE Symposium on Security and Privacy.
[2] D. E. Bell,et al. Secure Computer Systems : Mathematical Foundations , 2022 .
[3] David D. Clark,et al. A Comparison of Commercial and Military Computer Security Policies , 1987, 1987 IEEE Symposium on Security and Privacy.
[4] D. Elliott Bell,et al. Secure Computer System: Unified Exposition and Multics Interpretation , 1976 .