Description

This article is from the Computer Security Evaluation FAQ, by Trusted Product Evaluation Program TPEP@dockmaster.ncsc.mil.

22 What are security features? (Computer Security Evaluation)

A security feature is a specific implementable function in a
system which supports some part of the system's security
policy. Examples of security features would be access control,
trusted path, and audit. The Trusted Computer System
Evaluation Criteria (TCSEC) (see Section II, Question 1)
ratings are not designed to express the rating of individual
features, as are some other criteria. Rather, each class
specifies a set of security features that a system must
implement in order to be rated at that class. However, many
evaluations are given "extra credit" in the evaluation results
for successful implementations of features that are required
only in a higher overall rating in the criteria.

Continue to:

• prev: 21 What is the Federal Criteria? (Computer Security Evaluation)
• Index
• next: 23 What is assurance? (Computer Security Evaluation)