Andrew Lambdin-Abraham (kd5mdk) wrote,
Andrew Lambdin-Abraham

I was reading the Common Criteria Review for a Xerox Copier, and found the following assumption:

4.2. Personnel Security Assumptions
It is assumed that all authorized administrators are properly trained, not careless, not willfully negligent, or hostile, and will follow and abide by the instructions provided by the TOE documentation.

I wonder what devices do not make that assumption in their design.
  • Post a new comment


    default userpic

    Your IP address will be recorded 

    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.