Actions

Trusted Computer System Evaluation Criteria (TCSEC)

Revision as of 15:55, 5 January 2023 by User (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

What is Trusted Computer System Evaluation Criteria (TCSEC)

The Trusted Computer System Evaluation Criteria (TCSEC) is a set of guidelines for evaluating the security of computer systems. It was developed by the United States Department of Defense (DoD) in the 1980s and is also known as the "Orange Book."

The TCSEC provides a framework for evaluating the security of computer systems based on the level of trust required for the system's intended use. It defines four levels of security, ranging from "minimal" to "high," based on the sensitivity of the data being processed and the potential consequences of a security breach.

The TCSEC includes a set of criteria that must be met in order for a computer system to be considered secure at each level. These criteria cover various aspects of security, including access controls, system integrity, and system recovery.

The TCSEC was an influential document in the development of computer security standards and has been replaced by more recent standards, such as the Common Criteria for Information Technology Security Evaluation. However, the TCSEC is still often cited as a reference for evaluating the security of computer systems.


See Also

Trusted Computing (TC)


References