3 Parts of Security

[Jonathan S. Shapiro]

> What's "Common Criteria type security".

Oversimplifying a little, the "Common Criteria" is the new set of security
and integrity standards that have replaced the Orange Book. I say
oversimplifying because CC is supposed to be an international standard, but
the mutual recognition treaty structure to support it hasn't really emerged
very well. Another contender is something called ITSEC. The two sets of
requirements are nearly identical. While the ITSEC criterion are less widely
accepted, the treaty situation with them is much further along.

shap