atsec

Deutsch | 汉语

Articles and White Papers

atsec employees' expertise is in demand: we are members of international boards, speakers on conferences, and authors of books and articles.

Here are some examples of our reports and publications. You can sort them by  topic,  event or  author.

You can also select specific topics like  Common Criteria,  FIPS,  PCI,  FISMA,  Embedded Systems or  ISO/IEC 27001.

Topic	Event/ Medium	Author/ Speaker
atsec Newsletter USA 04/2012 [ read more]	Newsletter	various
infoSecEvaluations. setLocation(“Austin”); [ read more]	UT lecture	Holt, Powell
Common Criteria and Packages [ read more]	Whitepaper	Pattinson
atsec Newsletter Germany 02/2011 [ read more]	Newsletter	various
FRITSA: Do You Understand How all of your IT Security Assurance Efforts fit Together? [ read more]	ISSA Austin	Fiona Pattinson
atsec Newsletter China 12/2011 [ read more]	Newsletter	various
Evaluating Third-Party Code: How Can It Be Trusted? [ read more]	12th ICCC	Cavness
From FIPS 140-2 to CC [ read more]	12th ICCC	Mao
Comparative Study Between the Chinese Standards and the Common Criteria [ read more]	12th ICCC	Mao, Chen, Liu
An Access Control Model for Applications on Mobile Devices using Common Criteria Certifications [ read more]	12th ICCC	Kurth, Huynh
atsec Newsletter USA 10/2011 [ read more]	Newsletter	various
atsec Newsletter China 06/2011 [ read more]	Newsletter	various
atsec Newsletter USA 07/2011 [ read more]	Newsletter	various
atsec Newsletter Germany 04/2011 [ read more]	Newsletter	various
atsec Newsletter Germany 01/2011 [ read more]	Newsletter	various
Inherent Problems in the Information Technology Supply Chain [ read more]	Poster for 26th ACSAC	Courtney Cavness
Inherent Problems in the Information Technology Supply Chain [ read more]	26th ACSAC poster session	Courtney Cavness
atsec Newsletter USA 12/2010 [ read more]	Newsletter	various
Migrating to OSPP [ read more]	11th ICCC Conference	Krummeck, Penny, Robinson
Improving the Flexibility and Applicability of Protection Profiles [ read more]	11th ICCC Conference	Helmut Kurth
Becoming a CNAS Laboratory [ read more]	11th ICCC Conference	Yi Mao
Untrusted Developers: Code Integrity in a Distributed Development Environment [ read more]	ISSA Journal, vol. 8, no. 10, pp. 38-41.	Cavness, C., Kurth, H. & Mueller
Untrusted Developers - Code Integrity in a Distributed Development Environment [ read more]	White Paper	Cavness, Kurth, Mueller
atsec Newsletter USA 07/2010 [ read more]	Newsletter	various
atsec Newsletter USA 02/2010 [ read more]	Newsletter	various
atsec Newsletter Germany 12/2009 [ read more]	Newsletter	various
Beyond Common Criteria’s Mutual Recognition [ read more]	White Paper	Ochel
KVM Security Comparison [ read more]	White Paper	Mueller
Evidence based Evaluations Chances and Challenges [ read more]	10th ICCC	Kurth
Trusting Virtual Trust [ read more]	10th ICCC	Powell
Taking White Hats to the Laundry: How to Strengthen Testing in CC [ read more]	10th ICCC	Vassilev
An Attack Surface based Approach to Evaluation [ read more]	10th ICCC	Kurth
Beyond Common Criteria’s Mutual Recognition [ read more]	White Paper	Ochel
Common Criteria: National Validation Scheme Differences: CCEVS, CSEC and BSI [ read more]	Whitepaper	Pattinson, Hake, Krummeck, Persson
Introducing Assurance Measures for Security Target [ read more]	9th ICCC, Korea	Mao
Integration of Architectural Requirements into the CC Structure	9th ICCC, Korea	Kurth, Pingel
Measuring the Effectiveness of a Security Development Process	9th ICCC, Korea	Kurth, Grimm
Designing the Trusted Service Bus for EAL5 [ read more]	9th ICCC, Korea	Ochel
Comparison of CC Functionality & FISMA 800-53 Controls [ read more]	White paper	Fiona Pattinson
Operating System Evaluations - What security functionality is expected [ read more]	8th ICCC, Rome	Kurth, Farrel (IBM)
How To Eat A Mammoth [ read more]	8th ICCC, Rome	Krummeck
Economical Use of Formal Methods [ read more]	8th ICCC, Rome	Yi Mao
Secure System Design [ read more]	8th ICCC, Rome	Pattinson
CC in the Real World [ read more]	8th ICCC, Rome	Pattinson
XML-based Security Targets for tool-supported evaluations [ read more]	8th ICCC, Rome	Ochel
CC quick reference [ read more]	atsec document	Pattinson
A quick quide to the Linux evaluations [ read more]	White Paper	Mueller, Pattinson
Common Criteria Certification in China: A comparison with the schemes of the CCRA [ read more]	atsec website	Kurth, Liu, Ochel, Pattinson, Li
How to Write Site Security Targets [ read more]	7th ICCC Conference, Lanzarote	Krummeck
Applying the Draft CC Version 3.0 to Linux - Experience from a Trial Evaluation [ read more]	7th ICCC Conference, Lanzarote	Kurth
Addressing consumer needs to increase the demand for Common [ read more]	7th ICCC Conference, Lanzarote	Ochel
IT Security Assurance and Common Criteria [ read more]	TickIT International	Pattinson
Efficient CC Evaluations [ read more]	atsec website	Mueller
How Useful are Product Security Certifications for Users of Products? [ read more]	ZISC Information Security Colloquium SS 2005	Kurth
Deriving Security for Mixed IT System Architectures from Evaluated Products [ read more]	6th International Common Criteria Conference, Tokyo, 2005	Ochel
"Aktuelle Erfahrungen mit der Evaluierung von Open Source Software"	04/2005	Kurth
Garantiert sicher - Evaluierung von IT-Sicherheit. [ read more]	iX Magazin für professionelle Informationstechnik, 05/2005	Ochel
"BS 7799-2 and the CC" Supporting the Business of Software Development [ read more]	5th International Common Criteria Conference, Berlin, 09/2004	Pattinson
The Evaluated Configuration - Defining a user-friendly Target of Evaluation [ read more]	5th International Common Criteria Conference, Berlin, 09/2004	Mueller, Ochel
Security Assurance in Information Systems	S. K. Katsikas and D. Gritzalis (ed), Information Systems Security: Facing the Information Society of the of the 21st Centrury, Chapman & Hall, 1996	Kurth
Security Evaluations in Practice	Panel, ESORICS, 1994	Kurth