There are two important characteristics of a trusted operating system: features and assurance. Features are, for example, user identification and authentication, access control, auditing, etc. Assurance is making sure the TOS is as secure as it claims to be. We must rate the confidence we have in the operating system and determine for what needs the OS can be used for. In order to determine this, several criteria have been developed over the years. Many governments have their own requirements for different trusted operating systems, and in this section we will give information on different criteria and certification bodies.

A TOS evaluation is done by independent, government-certified labs. As mentioned earlier, the evaluation looks at both functionality and assurance. These labs look at the entire development process of a TOS: design, engineering environment, quality assurance, site security, development procedures, administrator documentation, testing, etc. An important part of the evaluation is inspecting design documents and source code. Penetration testing and independent vulnerability analysis is done.

One book that has a very good overview on trusted operating systems, criteria, and evaluations is Security in Computing by Charles P. Pfleeger. It gives a very good description on the history of TOS and evaluation procedures.

If you have a lot of questions about the evaluation process, there is a very good FAQ.

• Evaluation FAQ

Here is a slide show given by Argus Systems Group about the evaluation process. It includes several interesting graphics.

• Evaluation Slideshow – May 1999

Contact Us if you have a slide show that you would like posted here.
 

• CANADA CSE (Communications Security Establishment) – http://www.cse.dnd.ca/cse/english/home_1.html

• FRANCE http://www.somewhere.in.france/

• GERMANY http://www.somewhere.in.germany/

• USA NIAP (National Information Assurance Partnership) – http://niap.nist.gov/

• UK The UK ITSEC scheme – http://www.itsec.gov.uk

• USA Common Criteria Project – http://crcs.nist.giv/cc/

• USA Department of Defense Trusted Computer System Evaluation Criteria

• CANADA CCS (Common Criteria Evaluation and Certification Scheme) – http://www.cse.dnd.ca/cse/criteria/english/index.htm

• USA B1 protection profile -- http://www.radium.ncsc.mil/tpep/library/protection_profiles/ Select the "Labeled Security Protection Profile"

• UK UK Labelled Security Protection Profile -- http://www.itsec.gov.uk/download/protect/crpp005.pdf (PDF format)

• Historical Database of Computer Security Evaluations This is a database of evaluations in general, but some of these include TOS.

• Rainbow Series

• IT Security Cookbook - Operating System (OS) Overview Contains explainations of different forms of assurance and a few lists of companies that have gone through evaluation proccesses.

If you have any information that you would like added to this page, please use our Contact Us section.