We need to facilitate a change in user perception of security from a hindrance to an essential revenue generator and mission enabler. The Common Criteria protection profile (PP) and security target (ST) constructs can be used to help achieve this need. Yet this will only be possible if current, common PP/ST development practices are changed.
Proceedings of the 2001 Annual Computer Security Applications Conference
December 10-14, 2001
Computer Security Applications Conference
computer security, engineering principles, IT security, security baseline