Saturday, November 27, 2010

Computing Platform Security Criteria

The Computing Platform Architecture and Security Criteria (CPC) are the NSA documents that formally define the computing platform architecture, the platform components, and the computing platform instances. The CPC is the basis against which product developers can demonstrate component-level or component set-level compliance of their products, and system integrators can demonstrate platform-level compliance of the platforms they integrate.

The CPC criteria are documented as follows:



SUMMARY
The CPC supports secure integration of organizational infrastructure by defining the platform exported services in terms of functionality at their interfaces, and the assurances to demonstrate that platform exported services are being used properly. With USCYBERCOM closely connected to NSA we can expect that the CPC criteria will be applied to DoD.

Cited from http://www.nsa.gov/ia/programs/h_a_p/computing_platform_architecture_and_security_criteria/index.shtml

No comments:

Post a Comment

For comments please e-mail paul@strassmann.com