Formalization of the requirements of security guarantees (in accordance with ISO / IEC 15408) based on CASE-approach
I.V. Kosenko, O.A. Usachоva, M.R. Stadnichenko
Annotations languages:
The article describes an approach to the construction of infrastructure, use of software standards. Modern approaches to the formalization of the requirements of security guarantees (in accordance with ISO / IEC 15408) based on CASE-approach using formal notations. On the basis of the performed analysis, the most common notation to represent studies, a selection has been made notation of IT Trust to formalize the requirements of security guarantees. The work was developed a method of constructing the Assurance Case notation in the IT Trust on the basis of “vulnerability analysis”.
Keywords: information technology security, common criteria, safety justification, the justification of warranties, notation Toulmin, ASCAD, notation IT Trust
Reference:
Kosenko, I.V., Usacheva, O.A. and Stadnichenko, M.G. (2016), “Formalizatsiia trebovanii garantii bezopasnosti (v sootvetstvii so standartom ISO / IEC 15408) na osnove CASE-podkhoda” [Formalization of the requirements of security guarantees (in accordance with ISO / IEC 15408) based on CASE-approach], Scientific Works of Kharkiv National Air Force University, Vol. 1(46), pp. 93-98.
Kosenko, I.V., Usacheva, O.A. and Stadnichenko, M.G. (2016), “Formalizatsiia trebovanii garantii bezopasnosti (v sootvetstvii so standartom ISO / IEC 15408) na osnove CASE-podkhoda” [Formalization of the requirements of security guarantees (in accordance with ISO / IEC 15408) based on CASE-approach], Scientific Works of Kharkiv National Air Force University, Vol. 1(46), pp. 93-98.