Printer Friendly
Dictionary, Encyclopedia and Thesaurus - The Free Dictionary
1,507,452,137 visitors served.
forum mailing list For webmasters
?
New: Language forums
Dictionary/
thesaurus
Medical
dictionary
Legal
dictionary
Financial
dictionary
Acronyms
 
Idioms
Encyclopedia
Wikipedia
encyclopedia
?

NCSC

   Also found in: Acronyms, Wikipedia 0.09 sec.

NCSC

(National Computer Security Center) The arm of the U.S. National Security Agency that defines criteria for trusted computer products, which are embodied in the Orange Book and Red Book. Published in the 1980s and 1990s and known as the Rainbow Series because of their colored covers for each topic, they have been largely superseded by the Common Criteria. See also NCSA.

Orange Book
The Orange Book contains the "Trusted Computer Systems Evaluation Criteria" (TCSEC), DOD Standard 5200.28.

Red Book (for networks)
The Red Book contains the "Trusted Network Interpretation of the Trusted Computer System Evaluation Criteria" (NCSC-TG-005) and "Trusted Network Interpretation Environments Guideline: Guidance for Applying the Trusted Network Interpretation" (NCSC-TG-011).

Level D
Systems are rated on a scale starting from D, which is not secure, to A, which is the most secure.

Level D is a non-secure system.

Level C
Level C provides discretionary access control (DAC). The owner of the data can determine who has access to it.

C1: Requires user login, but allows group ID.

C2: Requires individual user login with
password and an audit mechanism.

Levels B and A
Levels B and A provide mandatory access control (MAC). Access is based on standard DOD clearances. Each data structure contains a sensitivity level, such as top secret, secret and unclassified, and is available only to users with that level of clearance.

B1: DOD clearance levels.

B2: Guarantees path between user and the
security system. Provides assurances
that system can be tested and clearances
cannot be downgraded.

B3: System is characterized by a mathematical
model that must be viable.

A1: System is characterized by a mathematical
model that can be proven. Highest
security. Used in military computers.

European Ratings
The European Information Technology Security Evaluation Criteria (ITSEC) is similar to TCSEC, but rates functionality (F) and effectiveness (E) separately.

        Orange
        Book
        TCSEC   ITSEC
        D       E0
        C1      F-C1, E1
        C2      F-C2, E2
        B1      F-B1, E3
        B2      F-B2, E4
        B3      F-B3, E5
        A1      F-B3, E6



How to thank TFD for its existence? Tell a friend about us, add a link to this page, add the site to iGoogle, or visit webmaster's page for free fun content.
?Page tools
Printer friendly
Cite / link
 Email
Feedback
? Mentioned in ? References in periodicals archive
 
Berman, D-Mission Hills, presented the group's leaders with a certificate marking official entry into the NCSC, a national organization credited with pressing federal lawmakers to enact Medicare.
SENIORS ORGANIZATION STARTS VALLEY CHAPTER by Daily News (Los Angeles, CA)
Scientists who worked at various universities around the Raleigh-Durham area would use the NCSC as a resource for doing computations for their own piece of science.
Chris Landreth by Amsden, Cynthia / Take One
For more than 30 years, court leaders have called on the NCSC for up-to-date information and hands-on assistance that helps it better serve the public.
National Center for State Courts Using SPSS to Analyze Data on U.S. ... by Business Wire
More results
 
Encyclopedia browser? ? Full browser
 
 
Encyclopedia
?

Disclaimer | Privacy policy | Feedback | Copyright © 2009 Farlex, Inc.
All content on this website, including dictionary, thesaurus, literature, geography, and other reference data is for informational purposes only. This information should not be considered complete, up to date, and is not intended to be used in place of a visit, consultation, or advice of a legal, medical, or any other professional. Terms of Use.