ISO/IEC 21827

More documents

Recommendations

Info

ISO/IEC 21827:2002(E) • security architecture recommendations - includes principles or constraints that define the security features of the system; • philosophy of protection - high-level description of how security is enforced, including automated, physical, personnel, and administrative mechanisms; • design standards, philosophies, principles - constraints on how the system is designed (e.g., least privilege, isolation of security controls); • coding standards - constraints on how the system is implemented. 7.9.6.3 Notes The amount of guidance required and the level of detail depends on the knowledge, experience and familiarity of the other engineering disciplines with security. In many cases much of the guidance may relate to the development environment rather than the system under development. 7.9.7 BP.09.06 - Provide Operational Security Guidance Provide security related guidance to operational system users and administrators. 7.9.7.1 Description The purpose of this base practice is to develop security related guidance and provide it to system users and administrators. This operational guidance tells the users and administrators what must be done to install, configure, operate, and decommission the system in a secure manner. To ensure that this is possible, the development of the operational security guidance should start early in the life cycle. 7.9.7.2 Example Work Products • administrators manual - description of system administrator functions and privileges for installing, configuring, operating, and decommissioning the system in a secure manner; • users manual - description of the security mechanisms provided by the system and guidelines for their use; • security profile - security environment (threats, organizational policy); security objectives (e.g., threats to be countered); security functional and assurance requirements; rationale that system developed to these requirements will meet the objectives; • system configuration instructions - instructions for configuration of the system to ensure its operation will meet the security objectives. 7.9.7.3 Notes The development environment is considered to be an operational environment for the development of systems. 7.10 PA10 - Specify Security Needs 7.10.1 Process Area 7.10.1.1 Summary Description The purpose of Specify Security Needs is to explicitly identify the needs related to security for the system. Specify Security Needs involves defining the basis for security in the system in order to meet all legal, policy, and organizational requirements for security. These needs are tailored based upon the target operational security context of the system, the current security and systems environment of the organization, and a set of security objectives are identified. A set of security-related requirements is defined for the system that becomes the baseline for security within the system upon approval. 7.10.1.2 Goals • A common understanding of security needs is reached between all parties, including the customer. 50 © ISO/IEC 2002 – All rights reserved
ISO/IEC 21827:2002(E) 7.10.1.3 Base Practice List BP.10.01 BP.10.02 BP.10.03 BP.10.04 BP.10.05 BP.10.06 BP.10.07 Gain an understanding of the customer's security needs. Identify the laws, policies, standards, external influences and constraints that govern the system. Identify the purpose of the system in order to determine the security context. Capture a high-level security oriented view of the system operation. Capture high-level goals that define the security of the system. Define a consistent set of statements which define the protection to be implemented in the system. Obtain agreement that the specified security requirements match the customer's needs. 7.10.1.4 Process Area Notes This process area covers the activities defining all aspects of security in the entire information system (e.g., physical, functional, procedural). The base practices address how the security needs are identified and refined into a coherent baseline of security-related requirements which used in the design, development, verification, operation, and maintenance of the system. In most cases it is necessary to take into account the existing environment and associated security needs. The information gained and produced by this process area is collected, further refined, used, and updated throughout a project (particularly in Provide Security Input (PA02)), in order to ensure customer needs are being addressed. 7.10.2 BP.10.01 - Gain Understanding of Customer's Security Needs Gain an understanding of the customer's security needs. 7.10.2.1 Description The purpose of this base practice is to collect all information necessary for a comprehensive understanding of the customer's security needs. These needs are influenced by the importance to the customer of security risk. The target environment in which the system is intended to operate also influences the customer's needs with regard to security. 7.10.2.2 Example Work Products • customer security needs statement - high-level description of security required by the customer. 7.10.2.3 Notes The term customer may refer to a specific recipient of a product, system, or service, or may refer to a generalized recipient based upon market research or product targeting. Different groups of users may need to be identified and distinguished. For example, ordinary users may have different needs from administrators. 7.10.3 BP.10.02 - Identify Applicable Laws, Policies, And Constraints Identify the laws, policies, standards, external influences and constraints that govern the system. 7.10.3.1 Description The purpose of this base practice is to gather all external influences which affect the security of the system. A determination of applicability should identify the laws, regulations, policies and commercial standards which govern the target environment of the system. A determination of precedence between global and local policies should be performed. Requirements for security placed on the system by the system customer must be identified and the security implications extracted. 7.10.3.2 Example Work Products • security constraints - laws, policies, regulations, and other constraints that influence the security of a system; • security profile - security environment (threats, organizational policy); security objectives (e.g., threats to be countered); security functional and assurance requirements; rationale that system developed to these © ISO/IEC 2002 – All rights reserved 51
Page 1 and 2:
INTERNATIONAL STANDARD ISO/IEC 2182
Page 3 and 4:
ISO/IEC 21827:2002(E) Contents Fore
Page 5 and 6:
© ISO/IEC 2002 - All rights reserv
Page 7 and 8: ISO/IEC 21827:2002(E) Specific Indu
Page 9 and 10: INTERNATIONAL STANDARD ISO/IEC 2182
Page 11 and 12: ISO/IEC 21827:2002(E) 3.11 Baseline
Page 13 and 14: ISO/IEC 21827:2002(E) 3.36 Validati
Page 15 and 16: ISO/IEC 21827:2002(E) 5 Structure o
Page 17 and 18: ISO/IEC 21827:2002(E) • Communica
Page 19 and 20: ISO/IEC 21827:2002(E) Figure 3 - Se
Page 21 and 22: ISO/IEC 21827:2002(E) Figure 5 - Th
Page 23 and 24: ISO/IEC 21827:2002(E) Subsequent co
Page 25 and 26: ISO/IEC 21827:2002(E) • Level 1,
Page 27 and 28: ISO/IEC 21827:2002(E) Table 3 - 218
Page 29 and 30: ISO/IEC 21827:2002(E) of which cont
Page 31 and 32: ISO/IEC 21827:2002(E) • security
Page 33 and 34: ISO/IEC 21827:2002(E) 7.2.1.2 Goals
Page 35 and 36: ISO/IEC 21827:2002(E) 7.2.5.1 Descr
Page 37 and 38: ISO/IEC 21827:2002(E) information f
Page 39 and 40: ISO/IEC 21827:2002(E) 7.3.7 BP.03.0
Page 41 and 42: ISO/IEC 21827:2002(E) 7.4.4.3 Notes
Page 43 and 44: ISO/IEC 21827:2002(E) of existing s
Page 45 and 46: ISO/IEC 21827:2002(E) 7.5.5.1 Descr
Page 47 and 48: ISO/IEC 21827:2002(E) acceptable le
Page 49 and 50: ISO/IEC 21827:2002(E) 7.7.2 BP.07.0
Page 51 and 52: ISO/IEC 21827:2002(E) 7.8.1.3 Base
Page 53 and 54: ISO/IEC 21827:2002(E) response shou
Page 55 and 56: ISO/IEC 21827:2002(E) 7.9 PA09 - Pr
Page 57: ISO/IEC 21827:2002(E) rules and pra
Page 61 and 62: ISO/IEC 21827:2002(E) information f
Page 63 and 64: ISO/IEC 21827:2002(E) In the intere
Page 65 and 66: ISO/IEC 21827:2002(E) Annex A (norm
Page 67 and 68: ISO/IEC 21827:2002(E) A.3.2.1 Commo
Page 69 and 70: ISO/IEC 21827:2002(E) A.3.2.7.2 Not
Page 71 and 72: ISO/IEC 21827:2002(E) A.3.5 Common
Page 73 and 74: ISO/IEC 21827:2002(E) A.4.2.2.3 Rel
Page 75 and 76: ISO/IEC 21827:2002(E) A.4.4.2.1 Des
Page 81 and 82: ISO/IEC 21827:2002(E) Annex B (norm
Page 83 and 84: ISO/IEC 21827:2002(E) B.3.2.1 Descr
Page 85 and 86: ISO/IEC 21827:2002(E) parameters;
Page 87 and 88: ISO/IEC 21827:2002(E) B.4.1.5 Proce
Page 91 and 92: ISO/IEC 21827:2002(E) B.5.2.3 Notes
Page 93 and 94: ISO/IEC 21827:2002(E) B.5.7 BP.14.0
Page 95 and 96: ISO/IEC 21827:2002(E) B.6.4.2 Examp
Page 97 and 98: ISO/IEC 21827:2002(E) BP.16.08 BP.1
Page 101 and 102: ISO/IEC 21827:2002(E) B.7.10.2 Exam
Page 103 and 104: ISO/IEC 21827:2002(E) • process a
Page 105 and 106: ISO/IEC 21827:2002(E) B.9.1.2 Summa
Page 107 and 108: ISO/IEC 21827:2002(E) B.9.5.2 Examp
Page 109 and 110:
ISO/IEC 21827:2002(E) B.10.4.2 Exam
Page 111 and 112:
ISO/IEC 21827:2002(E) B.11.2.1 Desc
Page 113 and 114:
ISO/IEC 21827:2002(E) performance.
Page 115 and 116:
ISO/IEC 21827:2002(E) B.12.3 BP.21.
Page 117 and 118:
ISO/IEC 21827:2002(E) B.12.7 BP.21.
Page 119 and 120:
ISO/IEC 21827:2002(E) B.13.2.1 Desc
Page 121 and 122:
ISO/IEC 21827:2002(E) • communica
Page 123 and 124:
ISO/IEC 21827:2002(E) produce the d
Page 125 and 126:
ISO/IEC 21827:2002(E) C.5.2 Organiz
Page 127 and 128:
ISO/IEC 21827:2002(E) C.5.12 Instit
Page 129 and 130:
ISO/IEC 21827:2002(E) Security Engi
Page 131 and 132:
ISO/IEC 21827:2002(E) GOODENOUGH93B
show all

ISO/IEC 21827

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?