NIAP: Archived U.S. Government Approved Protection Profile - Labeled Security Protection Profile, Version 1.b

NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems
Questions?  We're here to help
  NIAP  »»  Protection Profiles  »»  Archived PPs  »»  Details  
Archived U.S. Government Approved Protection Profile - Labeled Security Protection Profile, Version 1.b

Short Name: pp_os_ls_v1.b

Technology Type: Operating System

CC Version: 2.x

Date: 1999.10.08

Succeeded By: pp_os_ml_mr2.0_v1.91

Sunset Date: 2007.09.16 [Sunset Icon]

Conformance Claim: EAL3

Protection Profile [PDF]



Herewith a brief summary, sufficiently detailed to enable a potential user to detemine whether the PP is of interest.

The Common Criteria (CC) Labeled Security Protection Profile, hereafter called LSPP_V1.b, specifies a set of security functional and assurance requirements for Information Technology (IT) products. LSPP_V1.b-conformant products support access controls that are capable of enforcing access limitations on individual users and data objects. Specifically, two classes of access control mechanisms are provided: those that allow individual users to specify how resources (e.g., files, directories) under their control are to be shared; and those that enforce limitations on sharing among users. The latter is implemented by the use of security markings (i.e., “labels”). LSPP_V1.b-conformant products also provide an audit capability which records the security-relevant events which occur within the system.

The LSPP_V1.b provides for a level of protection which is appropriate for an assumed non-hostile and well-managed user community requiring protection against threats of inadvertent or casual attempts to breach the system security. The profile is not intended to be applicable to circumstances in which protection is required against determined attempts by hostile and well funded attackers to breach system security. The LSPP_V1.b does not fully address the threats posed by malicious system development or administrative personnel. LSPP_V1.b-conformant products are suitable for use in both commercial and government environments.

The LSPP_V1.b was derived from the requirements of the B1 class of the U.S. Department of Defense (DoD) Trusted Computer System Evaluation Criteria (TCSEC), dated December, 1985, and the material upon which those requirements are based. This protection profile provides security functions and assurances which are equivalent to those provided by the TCSEC and replaces the requirements used for B1 trusted product evaluations.

The LSPP_V1.b is generally applicable to distributed systems but does not address the security requirements which arise specifically out of the need to distribute the resources within a network.


The LSPP_V1.b is for a generalized environment with a moderate level of risk to the assets. The assurance requirements and the minimum strength of function were chosen to be consistent with that level of risk.

The assurance level is EAL 3 augmented and the minimum strength of function is SOF-medium.

This U.S. Government Approved Protection Profile is not assigned to any Validated Products

This U.S. Government Approved Protection Profile does not have any related Technical Decisions

Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).

Please forward any general questions to our Q&A tool.

Site Map              Contact Us              Home