A method for designing secure solutions

Authors
Citation
Jj. Whitmore, A method for designing secure solutions, IBM SYST J, 40(3), 2001, pp. 747-768
Citations number
18
Language
INGLESE
art.tipo
Article
Categorie Soggetti
Computer Science & Engineering
Journal title
IBM SYSTEMS JOURNAL
ISSN journal
0018-8670 → ACNP
Volume
40
Issue
3
Year of publication
2001
Pages
747 - 768
Database
ISI
SICI code
0018-8670(2001)40:3<747:AMFDSS>2.0.ZU;2-Y
Abstract
The task of developing information technology (IT) solutions that consisten tly and effectively apply security principles has many challenges, includin g. the complexity of integrating the specified security functions within th e several underlying component architectures found in computing systems, th e difficulty in developing a comprehensive set of baseline requirements for security, and a lack of widely accepted security design methods. With the formalization of security evaluation criteria into an international standar d known as Common Criteria, one of the barriers to a common approach for de veloping extensible IT security architectures has been lowered; however, mo re work remains. This paper describes a systematic approach for defining, m odeling, and documenting security functions within a structured design proc ess in order to facilitate greater trust in the operation of resulting IT s olutions.