2 cissp ® Official Study Guide Eighth Edition



Download 19,3 Mb.
Pdf ko'rish
bet290/881
Sana08.04.2023
Hajmi19,3 Mb.
#925879
1   ...   286   287   288   289   290   291   292   293   ...   881
Bog'liq
(CISSP) Mike Chapple, James Michael Stewart, Darril Gibson - CISSP Official Study Guide-Sybex (2018)

TCSEC
ITSEC
CC description
 
D
F-D+E0
EAL0, EAL1
Minimal/no protection
C1
F-C1+E1
EAL2
Discretionary security mechanisms
C2
F-C2+E2
EAL3
Controlled access protection
B1
F-B1+E3
EAL4
Labeled security protection
B2
F-B2+E4
EAL5
Structured security protection
B3
F-B3+E5
EAL6
Security domains
A1
F-B3+E6
EAL7
Verified security design
Industry and International Security
Implementation Guidelines
In addition to overall security access models, such as Common Criteria, there are many 
other more specific or focused security standards for various aspects of storage, com-
munication, transactions, and the like. Two of these standards you should be familiar 
with are 
Payment Card Industry Data Security Standard (PCI DSS)
and 
International 
Organization for Standardization (ISO)
.
PCI DSS is a collection of requirements for improving the security of electronic pay-
ment transactions. These standards were defined by the PCI Security Standards Council 
members, who are primarily credit card banks and financial institutions. The PCI DSS 

306
Chapter 8 

Principles of Security Models, Design, and Capabilities
defi nes requirements for security management, policies, procedures, network architecture, 
software design, and other critical protective measures. For more information on PCI DSS, 
please visit the website at
www.pcisecuritystandards.org
 . 
ISO is a worldwide standards-setting group of representatives from various national 
standards organizations. ISO defi nes standards for industrial and commercial equip-
ment, software, protocols, and management, among others. It issues six main products: 
International Standards, Technical Reports, Technical Specifi cations, Publicly Available 
Specifi cations, Technical Corrigenda, and Guides. ISO standards are widely accepted across 
many industries and have even been adopted as requirements or laws by various govern-
ments. For more information on ISO, please visit the website at
www.iso.org
 .

Download 19,3 Mb.

Do'stlaringiz bilan baham:
1   ...   286   287   288   289   290   291   292   293   ...   881



Ma'lumotlar bazasi mualliflik huquqi bilan himoyalangan ©hozir.org 2024
ma'muriyatiga murojaat qiling
kiriting | ro'yxatdan o'tish
    Bosh sahifa
юртда тантана
Боғда битган
Бугун юртда
Эшитганлар жилманглар
Эшитмадим деманглар
битган бодомлар
Yangiariq tumani
qitish marakazi
Raqamli texnologiyalar
ilishida muhokamadan
tasdiqqa tavsiya
tavsiya etilgan
iqtisodiyot kafedrasi
steiermarkischen landesregierung
asarlaringizni yuboring
o'zingizning asarlaringizni
Iltimos faqat
faqat o'zingizning
steierm rkischen
landesregierung fachabteilung
rkischen landesregierung
hamshira loyihasi
loyihasi mavsum
faolyatining oqibatlari
asosiy adabiyotlar
fakulteti ahborot
ahborot havfsizligi
havfsizligi kafedrasi
fanidan bo’yicha
fakulteti iqtisodiyot
boshqaruv fakulteti
chiqarishda boshqaruv
ishlab chiqarishda
iqtisodiyot fakultet
multiservis tarmoqlari
fanidan asosiy
Uzbek fanidan
mavzulari potok
asosidagi multiservis
'aliyyil a'ziym
billahil 'aliyyil
illaa billahil
quvvata illaa
falah' deganida
Kompyuter savodxonligi
bo’yicha mustaqil
'alal falah'
Hayya 'alal
'alas soloh
Hayya 'alas
mavsum boyicha

yuklab olish