Revision as of 13:36, 27 February 2017 edit 94.187.48.149 (talk) →See also ← Previous edit		Revision as of 02:54, 28 March 2017 edit undo NateL (talk \| contribs) 1 edit m Updated the dead link for DoD 5200.28-STD Next edit →
Line 18: : ''a small amount of software and hardware that security depends on and that we distinguish from a much larger amount that can misbehave without affecting security.'' Both definitions, while clear and convenient, are neither theoretically exact nor intended to be, as e.g. a [[network server]] process under a [[UNIX]]-like operating system might fall victim to a [[security breach]] and compromise an important part of the system's security, yet is not part of the operating system's TCB. The [[Trusted Computer System Evaluation Criteria\|Orange Book]], another classic [[computer security]] literature reference, therefore provides<ref>[http://csrc.nist.gov/~~secpubs~~publications/~~rainbow~~history/~~std001~~dod85.~~txt~~pdf Department of Defense trusted computer system evaluation criteria], DoD 5200.28-STD, 1985. In the glossary under entry '''Trusted Computing Base (TCB)'''.</ref> a more formal definition of the TCB of a computer system, as : ''the totality of protection mechanisms within it, including hardware, firmware, and software, the combination of which is responsible for enforcing a computer security policy.''

Trusted computing base: Difference between revisions