search

itc-wgtools / cPP-Tools

A repository for the creation of templates and guidance to be shared by all iTCs for the creation of cPPs and supporting documentation.
https://itc-wgtools.github.io/
6 stars 3 forks source link

FAQ: Acronyms #101

Closed woodbe closed 3 years ago

woodbe commented 3 years ago

Create a page with the acronyms for CC

woodbe commented 3 years ago

Initial list:

ADV Development Documentation AGD Guidance Documents ALC Life Cycle Support ASE Security Target ATE Testing Document AVA Vulnerability Assessment CCDB Common Criteria Development Board CCRA Common Criteria Recognition Arrangement CCUF Common Criteria Users Forum CI Configuration Item CM Configuration Management cPP Collaborative Protection Profile CSE Communications Security Establishment EAL Evaluation Assurance Level ESR Essential Security Requirements FAU Security Audit FCO Communication FCS Cryptographic Support FDP User Data Protection FIA Identification and Authentication FMT Security Management FPR Privacy FPT Protection of the TOE Security Functions FRU Resource Utilization FTA TOE Access I&A Identification and Authentication IT Interpretation Team iTC International Technical Community OE Operating Environment PP Protection Profile PPC PP-Configruation PPM Protection Profile Module SAR Security Assurance Requirement SD Supporting Document SFP Security Functional Policy SFR Security Functional Requirement ST Security Target TC Technical Community TOE Target of Evaluation ToR Terms of Reference TSF TOE Security Functionality TSFI TOE Security Function Interface TSP TOE Security Policy WG Working Group

woodbe commented 3 years ago

I'm thinking we should group these. For example, terms that are for the PP/ST, vs documents (i.e. PP/ST), vs organizational things.

Are there other classes we should have? Is this worth breaking into groupings?

Requirement Classes Terminology Documents Organizational

woodbe commented 3 years ago

Assurance/Requirement Classes

ADV Development Documentation AGD Guidance Documents ALC Life Cycle Support ASE Security Target ATE Testing Document AVA Vulnerability Assessment FAU Security Audit FCO Communication FCS Cryptographic Support FDP User Data Protection FIA Identification and Authentication FMT Security Management FPR Privacy FPT Protection of the TOE Security Functions FRU Resource Utilization FTA TOE Access

woodbe commented 3 years ago

Terminology

CI Configuration Item CM Configuration Management EAL Evaluation Assurance Level I&A Identification and Authentication OE Operating Environment SAR Security Assurance Requirement SFR Security Functional Requirement SFP Security Functional Policy TOE Target of Evaluation TSF TOE Security Functionality TSFI TOE Security Function Interface TSP TOE Security Policy

ACP Access Control Policy OSP Organizational Security Policy

Review ATP

woodbe commented 3 years ago

Documents

cPP Collaborative Protection Profile ESR Essential Security Requirements PP Protection Profile PPC PP-Configruation PPM Protection Profile Module SD Supporting Document SPD Security Problem Definition ST Security Target ToR Terms of Reference

woodbe commented 3 years ago

Organizational

CCDB Common Criteria Development Board CCRA Common Criteria Recognition Arrangement CCUF Common Criteria Users Forum IT Interpretation Team iTC International Technical Community TC Technical Community WG Working Group

woodbe commented 3 years ago

https://www.ccusersforum.org/faq/acronyms/