当前位置: 文江博客话题详情

通用标准的选项

发布于 2024-07-24 23:36:18 字数 177 浏览 9 评论 0原文

对于 [Under-attack] 等国际通用标准存在一些批评。1

您认为使用 CC 开发 IT 产品的优点和缺点是什么?

原文

There are some critics about the international Common Criteria like [Under-attack].1

What are in your opinion the pros and cons of developing IT products with CC?

如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要 登录 才能够评论, 你可以免费 注册 一个本站的账号。

评论(2

自控 2024-07-31 23:36:18

我是 BSI(德国)和 NIAPP(美国)计划的通用标准评估员。 我的经验不多,但我想我有资格回答这个问题。

优点:

  1. 使用 CC 进行开发的首要优势是能够与美国政府开展业务。 每当我对某人说这句话时,我的内心都会崩溃,因为我真的希望安全是首要原因。 但可惜...
  2. 其次,它极大地提高了设计文档的质量,因为 CC 的大部分内容都是围绕分析文档而展开的,而良好的文档是必要条件。 找到一个好的实验室,他们可能会为您完成所有这些工作。
  3. 它会让您意识到您从未想过的安全问题,例如客户如何知道我运送给他们的产品确实来自我而不是冒充我的人?
  4. 最后,可悲的是,它将提高产品的技术安全性。 获得一个好的实验室,您将获得非常强大的安全产品和认证。 拿到一个不好的证书,你就只能带着一张证书离开。

缺点:

  1. 极其昂贵。 除非你有足够的资金来吸收数十万美元的冲击,否则你不适合CC。 但是,如果您有意与联邦政府合作,如果他们真的喜欢您的产品,您可能会让他们付钱。
  2. 极其耗时。 我们的评估持续 9-16 个月,具体取决于产品的复杂程度和评估保证级别。 给您一个想法,EAL 4 的通用 Linux 发行版可能需要一整年才能完成。
  3. 该证书仅适用于您产品的确切版本号。 进行更新,证书无效。 (但是,是否接受修补产品取决于国防部的申请官员,因此并非所有希望都消失了。
  4. 它的价值在联邦市场之外的任何地方几乎毫无价值。
  5. 根据您选择的方案,您将面临某些最好的办法是找到一个可以帮助您完成所有事情的好实验室。

请注意,我从开发人员的角度为您提供了不同的优点和缺点。在从技术上讨论标准的制定方式及其有效性时,我们会讨论优点和缺点。

I'm a Common Criteria evaluator for the BSI (Germany) and NIAPP (USA) schemes. I've had a small amount of experience, but I think I'm qualified enough to answer this question.

Pros:

  1. The first and foremost plus to developing with CC is to be able to do business with the US government. I die inside every time I say this to someone, because I'd really like the top reason to be security. But alas...
  2. Secondly, it enormously increases the quality of your design documentation because much of the CC revolves around analyzing documentation, and good docs are a requirement. Find a good lab, and they may do all of that for you.
  3. It will make you aware of security questions you never thought about, like how does the customer know the product I shipped to them is really from me and not someone impersonating me?
  4. Lastly, sadly, it will improve the technical security of the product. Get a good lab, and you will leave with a very strong secure product and a certification. Get a bad one and you'll just leave with a certification.

Cons:

  1. Extremely expensive. Unless you have the deep-enough coffers to absorb a hit of hundreds of thousands of dollars, you're not cut out for CC. However, if you have the intention of working with the federal government, you may get them to pay your way if they really like your product.
  2. Extremely time consuming. Our evaluations last 9-16 months, depending on the complexity of the product and the evaluation assurance level. To give you an idea, a general linux distribution at EAL 4 could take a full year to complete.
  3. The certificate only applies to an exact version number of your product. Make an update and the cert is invalid. (However, its up to the requisitioning officer in the DoD whether to accept the patched product, so not all hope is lost.
  4. It's value is almost worthless anywhere outside the federal market.
  5. Depending on the scheme you pick, you'll be facing certain kinds of politics, lack of resources, and extra requirements. Best thing to do is find a good lab who will help you through everything.

Note that I'm giving you pro's and con's from the developer's point of view. There are a different set of pro's and con's when talking about technically how the criteria is set up and what it's effectiveness is.

回复 原文
四叶草在未来唯美盛开 2024-07-31 23:36:18

OP 已经很旧了,但万一有人正在研究 CC...

早在 2008 年,我就已发表的对 CC 的批评写了一篇论文。
我在国防部会议上介绍了这篇论文。
“共同标准:对其问题和批评的调查”
2009 年国防部网络犯罪会议,密苏里州圣路易斯,2009 年 1 月

我刚刚将这篇论文放在我的网站上,仅供参考:
https://jimyuill.com/cs-research/comp-sec-papers/< /a>

该论文已过时,但可能有用,因为某些问题可能仍然存在。

摘要:通用标准(CC)是一些政府(例如美国国防部)用于采购的计算机安全标准。 要在这些市场销售信息安全产品,需要获得 CC 认证。 关于 CC 的问题已经发表了很多文章,并且对 CC 也有广泛的批评。 例如,美国 CC 项目的一位主管最近被引述说:“捍卫该项目是一项全职工作。 这是一项艰巨的工作。” 本文对有关 CC 的问题和批评进行了调查。 该文件提供了:(a) 对所报告问题的分类,(b) 按类别组织的对所报告问题的调查,以及 (c) 特别有用和权威的来源注释指南。 本文旨在为以下人员提供资源:评估 CC 的可能用途、准备使用 CC 或研究 CC 本身。

对 CC 的批评分为三类:

  • CC 有效性问题
  • CC 规定的局限性问题
  • CC 实施问题

The OP is old, but in case someone is looking into CC...

Back in 2008, I wrote a paper on the published criticism about CC.
I presented the paper at a DoD conference.
“Common Criteria: A Survey of Its Problems and Criticism”
Department of Defense Cyber Crime Conference 2009, St. Louis, MO, January 2009

I just put the paper on my website, FYI:
https://jimyuill.com/cs-research/comp-sec-papers/

The paper is dated, but may be useful, as some of the problems likely persist.

Abstract: The Common Criteria (CC) is a computer-security standard that some governments use for procurement, e.g., the U.S. Department of Defense. To sell information-security products in these markets, CC certification is required. Much has been published about problems with CC, and there is extensive criticism of CC. For example, a director of the U.S. CC program was recently quoted as saying, “Defending the program is a full-time effort. It is a difficult job.” This paper presents a survey of the problems and criticism reported about CC. The paper provides: (a) a categorization for the reported problems, (b) a survey of the reported problems, organized by category, and (c) an annotated guide to the sources that were especially useful and authoritative. This paper is intended as a resource for those who are: evaluating CC for possible use, preparing to use CC, or researching CC itself.

The criticism about CC fell into three categories:

  • Problems with CC’s effectiveness
  • Problems with CC’s stated limitations
  • Problems with CC implementation
回复 原文
~没有更多了~

关于作者

绿阴红影里的.如风往事

暂无简介

文章
评论
25 人气
发私信

相关话题

更多

热门标签

操作系统 程序设计 IT运维 Linux系统管理 JavaScript 服务器应用 solaris C/C++ PHP Shell BSD Vue.js aix Oracle Python HTML 系统管理 HTML5 CSS 前端
更多

推荐作者

Promise

文章 0 评论 0

qq_lbRlsh

文章 0 评论 0

待"谢繁草

文章 0 评论 0

yy2010hell

文章 0 评论 0

漫无边际

文章 0 评论 0

傲娇萝莉攻

文章 0 评论 0

更多

友情链接

文江博客
    我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的 隐私政策 了解更多相关信息。 单击 接受 或继续使用网站,即表示您同意使用 Cookies 和您的相关数据。
    原文