PD ISO/IEC TR 15443-2:2012

Foreword
Introduction
1 Scope
2 Normative references
3 Terms, definitions and abbreviated terms
4 A framework for the analysis of IT security
   assurance
5 Criteria for the analysis SACA paradigms
6 Criteria for the analysis of SACA schemes
   and SACA systems
7 Criteria for the analysis of SACA bodies
8 Criteria for the analysis of SACA methods
9 Criteria for the analysis of standards, specifications
   and SACA documents
10 Criteria for the analysis of the SACA results

Gives a discussion of the attributes of security assurance conformity assessment methods that contribute towards making assurance claims and providing assurance evidence to fulfill meeting the assurance requirements for a deliverable.

This part of ISO/IEC TR 15443 builds on the concepts presented in ISO/IEC TR 15443-1. It provides a discussion of the attributes of security assurance conformity assessment methods that contribute towards making assurance claims and providing assurance evidence to fulfil meeting the assurance requirements for a deliverable.

This part of ISO/IEC TR 15443 proposes criteria for comparing and analysing different SACA methods. The reader is cautioned that the methods used as examples in this part of ISO/IEC TR 15443 are considered to represent popularly used methods at the time of its writing. New methods may appear, and modification or withdrawal of the methods cited may occur. It is intended that the criteria can be used to describe and compare any SACA method whatever its provenance.