ATIS Telecom Glossary
Tuesday, October 21, 2014

A B C D E F G H I
J K L M N O P Q R
S T U V W X Y Z  
Go
 
Glossary Home
Foreword
Introduction
Normative References
Using the ATIS Telecom Glossary
Annex A: Informative References
 
 
 
<< Back
evaluation
 1. Assessment of an information technology (IT) product or system against defined security-related functional and assurance criteria, performed by a combination of testing and analytic techniques.   2.   The detailed examination of a system or a product to search for vulnerabilities and to determine the extent to which the required or claimed security functions are upheld by its implementation [CESG].  Note: [1] Security functions are normally described in a System Electronic Information Security Policy, which forms the basis of the evaluation baseline.  [2] The examination may cover aspects of the development and operational environment.  See also: Certification, Information Technology Security Evaluation and Certification Scheme

3.  The assessment of an ITSEC system or product against defined evaluation criteria [ITSEC].

 

 

 

 

 

 

 

 

 

 



 
These definitions were prepared by ATIS Committee PRQC
 
For more information on the work related to these definitions,
please visit the ATIS website and the ATIS Document Center