BS EN ISO/IEC 19896-3:2023

$167.15

IT security techniques. Competence requirements for information security testers and evaluators – Knowledge, skills and effectiveness requirements for ISO/IEC 15408 evaluators

Published By	Publication Date	Number of Pages
BSI	2023	42

Guaranteed Safe Checkout

Category: BSI

If you have any questions, feel free to reach out to our online customer service team by clicking on the bottom right corner. We’re here to assist you 24/7.
Email:[email protected]

Description

PDF Catalog

PDF Pages	PDF Title
2	undefined
7	Foreword
8	Introduction
9	1 Scope 2 Normative references 3 Terms and definitions
10	4 Knowledge 4.1 General 4.2 Knowledge of ISO/IEC 15408 and ISO/IEC 18045 4.2.1 ISO/IEC 15408-1 4.2.2 ISO/IEC 15408-2 4.2.3 ISO/IEC 15408-3
11	4.2.4 ISO/IEC 18045 4.3 Knowledge of the assurance paradigm 4.3.1 Knowledge of the evaluation authority 4.3.2 Knowledge of the evaluation scheme
12	4.3.3 Knowledge of the laboratory and it’s management system 4.4 Knowledge of information security
13	4.5 Knowledge of the technology being evaluated 4.5.1 Knowledge of the technology being evaluated 4.5.2 Protection Profiles, packages and supporting documents 4.6 Knowledge required for specific assurance classes
14	4.7 Knowledge required when evaluating specific security functional requirements 4.8 Knowledge needed when evaluating specific technologies 5 Skills 5.1 Basic evaluation skills 5.1.1 Evaluation methods 5.1.2 Evaluation tools
15	5.2 Core evaluation skills given in ISO/IEC 15408-3 and ISO/IEC 18045 5.2.1 Evaluation principles 5.2.2 Evaluation methods and activities
16	5.3 Skills required when evaluating specific security assurance classes 5.3.1 General 5.3.2 ADV (Development) Class
17	5.3.3 AGD (Guidance Documents) Class 5.3.4 ALC (Life-Cycle Support) Class
18	5.3.5 ASE and APE (ST and PP evaluation) Classes 5.3.6 ATE (Tests) Class
19	5.3.7 AVA (Vulnerability Assessment) Class
20	5.3.8 ACO (Composition) Class 5.4 Skills required when evaluating specific security functional requirement classes 5.4.1 General
21	5.4.2 Skills required when evaluating the FCS (Cryptographic support) Class 5.5 Skills needed when evaluating specific technologies 6 Experience 7 Education
22	8 Effectiveness 8.1 General 8.2 Effectiveness of the evaluation 8.3 Evaluation scheme responsibilities for evaluator effectiveness 8.4 Effectiveness in performing timely evaluations 8.5 Effectiveness in performing accurate evaluations 8.6 Effectiveness in reporting results
23	Annex A (informative) Technology types: Knowledge and skills
28	Annex B (informative) Examples of knowledge required for evaluating security assurance requirement classes
35	Annex C (informative) Examples of knowledge required for evaluating security functional requirement classes
38	Bibliography

Additional information

Status	Definitive
Pages	42
Publication Date	2023-02-14
ISBN	978 0 539 22441 2
Standard Number	BS EN ISO/IEC 19896-3:2023
Title	IT security techniques. Competence requirements for information security testers and evaluators – Knowledge, skills and effectiveness requirements for ISO/IEC 15408 evaluators
Identical National Standard Of	EN ISO/IEC 19896-3, ISO/IEC 19896-3:2018
Corrects	BS ISO/IEC 19896-3:2018
Descriptors	Products, Evaluation, Effectiveness, Security, Information technology
Publisher	BSI
Committee	IST/33
ICS Codes	35.030 - IT Security

Preview PDF


PDF Format	Searchable	Printable	Preview Now

BS EN ISO/IEC 19896-3:2023

PDF Catalog

Related products