Certifications
There are various classification systems for the security of IT systems, those most relevant being ITSEC, CCITSE and Orange Book. Depending on the security level and complexity of the system concerned, a certification process may take several years. With all certifications, it’s important to ascertain precisely what’s been certified. Often, manufacturers will have only certain parts of a system certified, so as to keep the outlay involved as low as possible.
