Research Article

Security Evaluation Framework for Military IoT Devices

Table 3

Security controls that are converted on component and family level.

NIST Security ControlsISO/IEC15408 Common Criteria Component or Family

AC-21Information SharingFPT_TDC.1

AC-22Publicly Accessible ContentFPT_TDC.1

AC-23Data Mining ProtectionFTA_LSA.1

AU-13Monitoring for Information DisclosureFAU_SAR.1, FDP_ETC.1

AU-16Cross-Organizational AuditingFAU_SAR.1

CM-2Baseline ConfigurationEAL package

IA-3Device Identification and AuthenticationFIA_UAU.1, FIA_UAU.2, FIA_UAU.1, FIA_UAU.2

IA-9Service Identification and AuthenticationFIA_UAU.1, FIA_UAU.2, FIA_UAU.1, FIA_UAU.2

IA-10Adaptive Identification and AuthenticationFIA_UAU.1, FIA_UAU.2, FIA_UAU.1, FIA_UAU.2

MP-8Media DowngradingALC_CMC, ALC_CMS

PE-6Monitoring Physical AccessFPT_PHP.1, FPT_PHP.2, FPT_PHP.3

PE-8Visitor Access RecordsALC_DVS

PS-2Position Risk DesignationFPT_PHP.1, FPT_PHP.2, FPT_PHP.3

RA-6Technical Surveillance Countermeasures SurveyAVA_VAN

SA-2Allocation of ResourcesFRU_RSA

SA-13TrustworthinessEAL package

SA-16Developer-Provided TrainingALC_DVS

SA-20Customized Development of Critical ComponentsALC_CMC, ALC_CMS

SC-2Application PartitioningFIA_ATD.1

SC-18Mobile CodeFMT_MSA.1, FMT_MSA.2

SC-19Voice Over Internet ProtocolFMT_MSA.1, FMT_MSA.2

SC-20Secure Name/Address Resolution Service (Authoritative Source)FMT_MSA.1, FMT_MSA.2

SC-21Secure Name/Address Resolution Service (Recursive or Caching Resolver)FMT_MSA.1, FMT_MSA.2

SC-22Architecture and Provisioning for Name/Address Resolution ServiceFMT_MSA.1, FMT_MSA.2

SC-29HeterogeneityFDP_IFF

SC-32Information System PartitioningADV_ARC

SC-37Out-of-Band ChannelsFPT_PHP.1, FPT_PHP.2, FPT_PHP.3

SC-39Process IsolationADV_ARC

SC-42Sensor Capability and DataFDP_ETC.1, FDP_ETC.2

SC-43Usage RestrictionsFDP_IFF.3

SI-8Spam ProtectionFDP_ACC.1, FDP_ACC.2
FDP_IFC.1,FDP_IFC.2

SI-11Error HandlingFDP_ACC.1, FDP_ACC.2, FIA_AFL.1

SI-15Information Output FilteringFDP_ACC.1, FDP_ACC.2
FDP_IFC.1,FDP_IFC.2

SI-16Memory ProtectionADV_ARC

SI-17Fail-Safe ProceduresFPT_RCV, ADV_ARC