trusted computer security evaluation criteria (TCSEC)

The Trusted Computer Security Evaluation Criteria (TCSEC) is a catalog of criteria for the security ofIT systems. Developed by the U.S. NCSC and published by the U.S. Department of Defense in 1985, the criteria catalog is used by U.S. companies to evaluate security-related measures.

Building on the TCSEC defined in the 1980s, various catalogs of measures have been developed for different countries and NATO. Internationally, the Common Criteria( CC) are used, which were developed from the Information Technology Security Evaluation Criterias( ITSEC) and the TCSEC.

The security standards specified in the Trusted Computer Security Evaluation Criteria (TCSEC) for protecting communications systems against unauthorized use are compiled in Orange Books. These specify various levels of security, ranging from minimum protection, identification and authentication, access protection with logged accesses, access control to objects, to security domains and management by the system administrator.