Mapping Linux Security Targets to Existing Test Suites

TitleMapping Linux Security Targets to Existing Test Suites
Publication TypeConference Paper
Year of Publication2008
AuthorsArdagna, C, Damiani, E, Ioini, N, Frati, F, Giovannini, P, Tchokpon, R
Secondary TitleOSS2008: Open Source Development, Communities and Quality (IFIP 2.13)
Pagination29 - 45
Date Published2008///
ISSN Number978-0-387-09683-4

The Common Criteria standard provides an infrastructure for evaluating security functions of IT products and for certifying that security policies claimed by product suppliers are correctly enforced by the security functions themselves. Certifying Open Source software (OSS) can pave the way to OSS adoption in a number of security-conscious application environments. Recent experiences in certifying Linux distributions has pointed out the problem of finding a mapping between descriptions of OSS security functions and existingtest suites developed independently, such as the Linux Test Project. In this paper, we describe a mechanism, based on matching techniques, which semiautomatically associates security functions to existing test suite such as the ones developed by Open Source communities.

Full Text
PDF icon Mapping Linux Security Targets1.04 MB