Trusted Computer System Evaluation Criteria

1826 Words8 Pages
(Name) (Professor) (Subject) (Date) Trusted Computer System Evaluation Criteria (TCSEC) Trusted Computer System Evaluation Criteria (TCSEC) is a computer security standard that was developed by the US department of defense DOD aimed at assessment of how effective computer security controls, which have been built in a computer system are. This security standard has been used to classify, evaluate and determine the computer systems intended for processing, storage and retrieving classified or sensitive information. It was the first main evaluation methodology developed to analyze and determine the security level of a system. The standard is also known as the orange book and was produced as part of series of books called the rainbow series. The series got its name from the colorful covers that the books in the series used (Denning). Trusted Computer System Evaluation Criteria is divided into four categories: D, C, B and A. These categories are hierarchical and the highest division (A) is reserved for the systems that provide the most comprehensive security. Each higher division bears a major improvement of the overall security and the confidence with which one can regard a system to protect sensitive information. Within the subdivisions, B and C, there exist further subdivisions called classes. These classes are also hierarchical. The systems represented by division C and the lower classes of division B are a characteristic of the security mechanisms that the systems possess.

More about Trusted Computer System Evaluation Criteria

Open Document