Andrew Lambdin-Abraham (kd5mdk) wrote,
Andrew Lambdin-Abraham
kd5mdk

I was reading the Common Criteria Review for a Xerox Copier, and found the following assumption:

4.2. Personnel Security Assumptions
It is assumed that all authorized administrators are properly trained, not careless, not willfully negligent, or hostile, and will follow and abide by the instructions provided by the TOE documentation.


I wonder what devices do not make that assumption in their design.
  • Post a new comment

    Error

    default userpic

    Your IP address will be recorded 

  • 4 comments