| From: | Sam Mason <sam(at)samason(dot)me(dot)uk> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Common criteria evaluation? |
| Date: | 2007-11-16 18:46:25 |
| Message-ID: | 20071116184625.GX1955@frubble.xen.chris-lamb.co.uk |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Fri, Nov 16, 2007 at 01:34:40PM -0500, Greg Smith wrote:
> On Fri, 16 Nov 2007, Sam Mason wrote:
> >Just out of interest, what does EAL level 1 actually test/check for?
>
> There's a good summary of this whole process on the relevant Wikipedia
> pages:
>
> http://en.wikipedia.org/wiki/Evaluation_Assurance_Level
> http://en.wikipedia.org/wiki/Common_Criteria
I had a look though those, but they seemed pretty vague about what was
actually being checked/verified.
> Actually digging into the details will put you to sleep fast, the specs
> are available at
> http://isotc.iso.org/livelink/livelink/fetch/2000/2489/Ittf_Home/PubliclyAvailableStandards.htm
>
> To figure out how to map the EAL levels into what's acually tested, you
> need to look at the table at the end of ISO/IEC 15408-3:2005. That serves
> as a sort of index of what you need to pay attention to in the other
> documentation.
And that's the other extreme. The introduction seems readable, lets see
how long I last!
Sam
| From | Date | Subject | |
|---|---|---|---|
| Next Message | João Paulo Zavanela | 2007-11-16 18:50:20 | Primary Key |
| Previous Message | Greg Smith | 2007-11-16 18:34:40 | Re: Common criteria evaluation? |