Harvey Newstrom CISSP CISA CISM CGEIT CSSLP CRISC CIFI NSA-IAM ISSAP ISSMP ISSPCS IBMCP TCSEC Orange Book

The Trusted Computer System Evaluation Criteria (TCSEC), also known as the "Orange Book" is a set of security features and assurances that were engineered to support the security policies of the U.S. Department of Defense to enforce confidentiality of data.

The Orange Book defines the following security levels:

Division D. Minimal Protection

Division C. Discretionary Protection

Class (C1). Discretionary Security Protection

Class (C2). Controlled Access Protection

Division B. Mandatory Protection

Class (B1). Labeled Security Protection

Class (B2). Structured Protection

Class (B3). Security Domains

Division A. Verified Protection

Class (A1). Verified Design

Beyond Class (A1). Beyond Class (A1)

Contact Us for a proposal!