A Compositional Certification Methodology For a COTS-Based System (A13b)
The aim of this presentation is providing an overview of the compositional security certification methodology to be used in the scope of MILS (Multiple Independent Levels of Security) evaluations and certifications. The approach also provides means to integrate/compose compliant and certified components. The methodology has been created as part of the certMILS Horizon 2020 research and innovation programme under grant agreement No 731456. Using a MILS approach automatically enforces a partitioned architecture, which can be used to give credit to design assurance. We present the different options for compositional certification regarding the structure of the composition, including specific information covering Common Criteria and IEC 62443, and show where the MILS design assurance is used as evidence for the compositional certification.