U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

CSPP--Guidance for COTS Security Protection Profiles (Formerly: CS2 - Protection Profile Guidance for Near-Term COTS) Version 1.0

Published

Author(s)

G Stoneburner

Abstract

CSPP provides the guidance necessary to develop compliant Common Criteria protection profiles for near-term, achievable, security baselines using commercial off-the-shelf (COTS) information technology. CSPP accomplishes this purpose by:--describing a largely policy-neutral, notional information system in the format of a protection profile (PP); --specifying a subset of the common criteria to be used in developing compliant protection profiles; --providing the basis for refining----policy-neutral guidance into specific policy requirements; and --system security threats, objectives, and requirements into a subset which is appropriate for a specific PP. CSPP provides the requirements necessary to specify needs for both stand-alone and distributed, multi-user information systems. This covers general-purpose operating systems, database management systems, and other applications.
Citation
NIST Interagency/Internal Report (NISTIR) - 6462
Report Number
6462
NIST Pub Series
NIST Interagency/Internal Report (NISTIR)
Pub Type
NIST Pubs

Download Paper

https://doi.org/10.6028/NIST.IR.6462

Keywords

applications, baseline protection, COTS, general-purpose operating systems, networked information systems, Protection Profile Guidance
Cybersecurity

Citation

Stoneburner, G. (1999), CSPP--Guidance for COTS Security Protection Profiles (Formerly: CS2 - Protection Profile Guidance for Near-Term COTS) Version 1.0, NIST Interagency/Internal Report (NISTIR), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.IR.6462 (Accessed July 22, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created December 1, 1999, Updated November 10, 2018