A quantitative analysis of common criteria certification practice

S.P. Kaluvuri, M. Bezzi, Y. Roudier

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

18 Citaten (Scopus)
1 Downloads (Pure)

Samenvatting

The Common Criteria (CC) certification framework defines a widely recognized, multi-domain certification scheme that aims to provide security assurances about IT products to consumers. However, the CC scheme does not prescribe a monitoring scheme for the CC practice, raising concerns about the quality of the security assurance provided by the certification and questions on its usefulness. In this paper, we present a critical analysis of the CC practice that concretely exposes the limitations of current approaches. We also provide directions to improve the CC practice.
Originele taal-2Engels
TitelTrust, Privacy, and Security in Digital Business (11th International Conference, TrustBus 2014, Munich, Germany, September 2-3, 2014. Proceedings)
RedacteurenC. Eckert, S.K. Katsikas, G. Pernul
Plaats van productieCham
UitgeverijSpringer
Pagina's132-143
ISBN van geprinte versie978-3-319-09769-5
DOI's
StatusGepubliceerd - 2014
Evenementconference; 11th International Conference on Trust, Privacy, and Security in Digital Business; 2014-09-02; 2014-09-03 -
Duur: 2 sep. 20143 sep. 2014

Publicatie series

NaamLecture Notes in Computer Science
Volume8647
ISSN van geprinte versie0302-9743

Congres

Congresconference; 11th International Conference on Trust, Privacy, and Security in Digital Business; 2014-09-02; 2014-09-03
Periode2/09/143/09/14
Ander11th International Conference on Trust, Privacy, and Security in Digital Business

Vingerafdruk

Duik in de onderzoeksthema's van 'A quantitative analysis of common criteria certification practice'. Samen vormen ze een unieke vingerafdruk.

Citeer dit