High Assurance Products in IT Security

2008 ◽  
pp. 1537-1549
Author(s):  
Rayford B. Vaugh
Keyword(s):  
Budget Process ◽  
Correct Operation ◽  
Common Criteria ◽  
Industrial Organizations ◽  
Corporate Decisions ◽  
Security Software ◽  
Sales Presentation ◽  
High Assurance ◽  
Independent Review ◽  
The Common

Corporate decisions concerning the purchase of security software and hardware appliances are often made based simply on the recommendations of the technical staff, the budget process (return on investment arguments), and/or a sales presentation and assertions. This chapter addresses the notion of trusted products and assurance in those products (i.e., confidence in the correct operation of a product) and how assurance is gained through independent review and testing. Early attempts to measure assurance in trusted products are described (some products today still refer to these procedures). Modern approaches to measuring assurance will be discussed in the context of ISO Standard 15408 (the Common Criteria (CC)). Current U.S. federal government policy concerning the use of evaluated products is presented, as well as a discussion of why industrial organizations may wish to consider such products.

High Assurance Products in IT Security

2011 ◽  
pp. 182-196
Author(s):  
Rayford B. Vaugh
Keyword(s):  
Budget Process ◽  
Correct Operation ◽  
Common Criteria ◽  
Industrial Organizations ◽  
Corporate Decisions ◽  
Security Software ◽  
Sales Presentation ◽  
High Assurance ◽  
Independent Review ◽  
The Common

Corporate decisions concerning the purchase of security software and hardware appliances are often made based simply on the recommendations of the technical staff, the budget process (return on investment arguments), and/or a sales presentation and assertions. This chapter addresses the notion of trusted products and assurance in those products (i.e., confidence in the correct operation of a product) and how assurance is gained through independent review and testing. Early attempts to measure assurance in trusted products are described (some products today still refer to these procedures). Modern approaches to measuring assurance will be discussed in the context of ISO Standard 15408 (the Common Criteria (CC)). Current U.S. federal government policy concerning the use of evaluated products is presented, as well as a discussion of why industrial organizations may wish to consider such products.

scholarly journals Mind the Gap: Formal Verification and the Common Criteria (Discussion Paper)

10.29007/w9b3 ◽  
2018 ◽  
Author(s):  
Bernhard Beckert ◽  
Daniel Bruns ◽  
Sarah Grebing
Keyword(s):  
Formal Verification ◽  
Program Verification ◽  
Common Belief ◽  
Formal Models ◽  
Discussion Paper ◽  
Certification Process ◽  
Common Criteria ◽  
Software Certification ◽  
High Assurance ◽  
The Common

It is a common belief that the rise of standardized software certification schemes like the Common Criteria (CC) would give a boost to formal verification, and that software certification may be a killer application for program verification. However, while formal models are indeed used throughout high-assurance certification, verification of the actual implementation is not required by the CC and largely neglected in certification practice - despite the great advances in program verification over the last decade.In this paper we discuss the gap between program verification and CC software certification, and we point out possible uses of code-level program verification in the CC certification process.

scholarly journals Anℋ∞Optimal Robust Pole Placement with Fixed Transparent Controller Structure on the Basis of Nonnegativity of Even Spectral Polynomials

2012 ◽  
Vol 2012 ◽  
pp. 1-25 ◽  
Author(s):  
Andrej Sarjaš ◽  
Rajko Svečko ◽  
Amor Chowdhury
Keyword(s):  
Controller Design ◽  
Polynomial Equation ◽  
Pole Placement ◽  
Robust Controller ◽  
Reference Tracking ◽  
Common Criteria ◽  
Sensitivity Problem ◽  
The Common ◽  
Partial Fraction Decomposition ◽  
Iterative Evolution

This paper presents the synthesis of an optimal robust controller with the use of pole placement technique. The presented method includes solving a polynomial equation on the basis of the chosen fixed characteristic polynomial and introduced parametric solutions with a known parametric structure of the controller. Robustness criteria in an unstructured uncertainty description with metrics of normℋ∞are for a more reliable and effective formulation of objective functions for optimization presented in the form of a spectral polynomial with positivity conditions. The method enables robust low-order controller design by using plant simplification with partial-fraction decomposition, where the simplification remainder is added to the performance weight. The controller structure is assembled of well-known parts such as disturbance rejection, and reference tracking. The approach also allows the possibility of multiobjective optimization of robust criteria, application of mixed sensitivity problem, and other closed-loop limitation criteria, where the common criteria function can be composed from different unrelated criteria. Optimization and controller design are performed with iterative evolution algorithm.

scholarly journals Before writing that script: use of antipsychotic medication in patients with dementia in a CMHTOA

BJPsych Open ◽  
2021 ◽  
Vol 7 (S1) ◽  
pp. S96-S96
Author(s):  
Adaora Obiekezie ◽  
Roohi Afshan ◽  
Jack Healy
Keyword(s):  
Antipsychotic Medication ◽  
Psychological Symptoms ◽  
Antipsychotic Treatment ◽  
Community Mental Health Team ◽  
Mental Health Team ◽  
Diagnosis Of Dementia ◽  
Independent Review ◽  
The Common ◽  
The Uk ◽  
Current Guidelines

AimsA 2009 independent review commissioned by the UK government to review the use of antipsychotic medication in patients diagnosed with dementia produced the Time for Action report, often referred to as the Banerjee Report. It highlighted the common practise of using antipsychotics in the treatment of Behavioural and Psychological Symptoms of Dementia (BPSD) and the clinical issues this could raise especially when these medications were not being regularly reviewed. The audti was therefore carried out to determine whether patinets with BPSD in a Community Mental Health Team for Older adults (CMHTOA) in Mid Surrey, who had been diagnosed with BPSD, were being adequately assessed and managed in line with the current guidelines.MethodPatients with a diagnosis of dementia open to one of three teams in the CMHTOA during the months of October and November 2019 were identified, those being prescribed antipsychotic medication were selected and data from their electronic records collected and analysed to determine if clinicians: a) identified and documented the target behaviours, b) carried out a structured assessment using an ABC chart before commencing medication, c) reviewed the antipsychotic medication 6 weeks after it was commenced.ResultOf the 87 patients with a diagnosis of Dementia from October to November 2019, 18 were on antipsychotic medication. 100% of these had target behaviours identified and clearly documented, a sixth had a structured assessment prior to starting medication and 61% had been reviewed after the first 6 weeks of starting antipsychotics.ConclusionThe findings showed that a good proprotion of patients did not have the required structured assessment before commencement of treatment and that more needed to be done by way of improving regular reviews after antipsychotic treatment is commenced.

Sign in / Sign up

Export Citation Format

Share Document