IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

Safeguard Catalogue - Organisation Remarks<br />

____________________________________________________________________ .........................................<br />

Tests of additional functional features<br />

<strong>The</strong> additional features itemised in the Requirements Catalogue alongside the<br />

security-specific features and the functional features must also be checked:<br />

- Performance<br />

Running time behaviour should be determined for all planned<br />

configurations of the product. In order to test performance adequately,<br />

general tests in which production working is simulated, or a pilot<br />

application with selected users, are useful. It must be established whether<br />

the set performance requirements are being met.<br />

- Reliability<br />

Behaviour during accidentally or maliciously caused system crashes (crash<br />

test) must be analysed and it must be established what damage results from<br />

this. A record must be made of whether the product can be properly and<br />

correctly restarted following system crashes. A check must also be made as<br />

to whether there can be direct access to data bases independent of the<br />

regular program function. In many cases such access can lead to loss of<br />

data and should be prevented by the product. It should also be recorded<br />

whether the program supports possibilities of reversing ”critical actions”<br />

(e.g. deleting, formatting).<br />

- User-friendliness<br />

Whether the product is user-friendly depends, to a particular degree, on the<br />

subjective feeling of the tester. However, the following aspects can provide<br />

clues when making the assessment:<br />

- technology of menu surfaces (pull-down menus, scrolling, drag &<br />

drop, etc.),<br />

- design of menu surfaces (e.g. uniformity, comprehensibility, menudriven<br />

operation),<br />

- keyboard layout,<br />

- error messages,<br />

- trouble-free access to interfaces (batch operation, communication,<br />

etc.),<br />

- readability of the user documentation,<br />

- help functions.<br />

Analysis of user-friendliness must describe possible modes of operation of<br />

the product, including operation following handling- or operating errors,<br />

and their consequences and implications for maintaining secure operation.<br />

- Maintainability<br />

Personnel and financial expenditure on the maintenance and care of the<br />

product should be determined during testing. This can be estimated with<br />

the aid, for example, of reference factors such as other reference<br />

installations, tests in specialist magazines, or using the installation<br />

expenditure determined during testing. To do this, the number of manual<br />

____________________________________________________________________ .........................................<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Oktober 2000

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!