1
کامپیوتر و شبکه::
معیار ارزیابی امنیت فناوری اطلاعات
The Information Technology Security Evaluation Criteria (ITSEC) version 1.2 was released in 1991 as a joint standard used by France, Germany, the Netherlands, and the United Kingdom [147].
ITSEC defines a set of criteria for evaluating a system, called the target of evaluation, to verify the presence of a set of security features and to verify its defenses against a comprehensive set of penetration tests.
CTCPEC leverages the security feature requirements of the Orange Book while incorporating the notion of distinct assurance levels of the ITSEC approach.
Like the ITSEC and CTCPEC approaches, the Common Criteria separates the assurance effort from the security features being assured.
The Orange Book notions of security function were extended and combined with the assurance approaches developed in Europe (ITSEC) and Canada (CTCPEC) to create the Common Criteria approach.
واژگان شبکه مترجمین ایران