Auto-Selection of Security Functional Components Based on Common Criteria
With the development of software engineering, security problems have become more and more serious through all phases in software development life circle. This paper proposes an automatic method of selecting security functional components by mapping threats and components. Firstly, the authors extract the information of threats from the published documents of Protect Profiles. In order to defend these threats, they obtain security objectives from security functional class. Then, they consider security functional requirements based on security objectives. Finally, they extract security functional components from security requirements.