World is Welcome To The World of Linux

Journey into the world of linux

Menu
  • About
  • Welcome
Menu

CC, CAPP, LSPP and EAL4+

Posted on December 30, 2008 by Ganesh Sharma

If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!

The terms CC, CAPP, EAL4+ are used often in AIX security discussions. The article discusses about these in AIX perspective. Let’s understand what exactly CC, CAPP and EAL4+ are.

What is CC

CC is Common Criteria. Its an ISO15408 standard for assurance evaluation of IT products. Any system evaluated according to Common Criteria will be CC Evaluated System.

What is CAPP

CAPP is Controlled Access Protection Profile, another standard for evaluating the security of system according to Common Criteria(CC). So, a CAPP compliant system is one which is designed for meeting CAPP according to CC.

What is LSPP

LSPP is Labeled security Protection Profile. LSPP has further security restrictions and is available for

installation with “Trusted AIX” only.

What is EAL4+

EAL4+ is Evaluation Assurance Level 4. Any CAPP system will be called CAOO/EAL4+ system. EAL4+ puts some restrictions on software installation during Base Operating System Install(BOS). Network access is also restricted according to these standards. The other profile available with LSPP/EAL4+.

If a system is evaluated according to CC, then it will remain valid only till the specific hardware/software configuration of the system is unchanged. Making any changes to the configuration brings the system in non evaluated state. That simply means that system is no longer certified. This does not necessarily mean that the system is in non-secured configuration.

A CAPP/EAL4+ technology option will be only available if

  1. Installation is set to New and Complete Overwrite.
  2. 64 bit kernel is being used.
  3. English language is used.
  4. JFS2 is enabled.

After setting CAPP/EAL4+, TCB is automatically set to ‘Yes’.

The topics are discussed in full details in the book SC23-6603-00. The book is available for free download from redbooks website.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recent Posts

  • Date Command Tutorial(Video)
  • grep Command Tutorial – 1(Video)
  • Introduction To ls Command(Video)
  • Chapter 3
  • Set Position Of Poll Module Into Joomla

Recent Comments

  • Kansas City Trailer Proz on Physical Volume In AIX – A Primer
  • Create volume group in AIX | myunixsheet on How To Create Volume Group
  • Restore of AIX backup on other Unix system - TecHub on What is mksysb And What Are Its Components
  • Firewall Unleashed - InfoSec Institute on Packet Filtering Firewall: An Introduction
  • Manwendra on Proxy Firewall and Gateway Firewall: Introduction

Archives

  • January 2019
  • June 2010
  • May 2010
  • February 2010
  • May 2009
  • April 2009
  • March 2009
  • February 2009
  • January 2009
  • December 2008
  • November 2008

Categories

  • 30 Days To Joomla WebSite Setup
  • A Journey To The World of Linux System Administration
  • Aix
  • Backups
  • Books
  • Firewalls
  • Introduction
  • Joomla
  • Joomla Backup
  • Joomla Web Technology
  • Linux
  • LPAR and Virtualization
  • LVM
  • Pluggable Authentication Modules
  • section navigator pro
  • Security
  • Security Knowledge Base
  • Tips and Tricks
  • Uncategorized
  • World is Welcome Products

Meta

  • Log in
  • Entries RSS
  • Comments RSS
  • WordPress.org
©2023 World is Welcome To The World of Linux | WordPress Theme by SuperbThemes