ISO/IEC TR 19791:2006

Description
Information Technology - Security Techniques - Security Assessment of Operational Systems.

Program

Order your copy of ISO/IEC TR 19791:2006 today!ISO/IEC TR 19791:2006 provides guidance and criteria for the security evaluation of operational systems. It provides an extension to the scope of ISO/IEC 15408, by taking into account a number of critical aspects of operational systems not addressed in ISO/IEC 15408 evaluation.
The principal extensions that are required address evaluation of the operational environment surrounding the target of evaluation, and the decomposition of complex operational systems into security domains that can be separately evaluated.
ISO/IEC TR 19791:2006 provides:

• A definition and model for operational systems,
• A description of the extensions to ISO/IEC 15408 evaluation concepts needed to evaluate such operational systems,
• A methodology and process for performing the security evaluation of operational systems,
• Additional security evaluation criteria to address those aspects of operational systems not covered by the ISO/IEC 15408 evaluation criteria.

ISO/IEC TR 19791:2006 permits the incorporation of security products evaluated against ISO/IEC 15408 into operational systems evaluated as a whole using ISO/IEC TR 19791:2006.


ISO/IEC TR 19791:2006 focus is the security evaluation of operational systems and does not consider other forms of system assessment.
Key Features and Benefits:

• Provides guidance and criteria for the security evaluation of operational systems. Helping organisations to conduct such an assessment so as to identify areas in need of improvement.
• Is an extension of the evaluation criteria in ISO/IEC 15408 family of standards. These standards can be leveraged together to assure a higher level of operational security.

Pages: 165

Format: Hardcopy

Published Date: 15 May 2006
Availability: In Stock

Order this essential guidance to undertaking security assessments today!