IT security is the
enabler for functional safety of software based safety related systems.
The top security goals of software driven systems are Integrity,
Confidentiality, Availability and Liability. Many
standards are related to development, evaluation/certification,
manufacturing, operation and management of IT. One of these standards is
the "Common Criteria
for Information Technology Security Evaluation" (ISO/IEC 15408)
which is supported by an international harmonized scheme.
In Germany there is the "Baseline Protection Manual" of the Bundesamt
für Sicherheit in der Informationstechnik (BSI) providing information
how to protect IT in operation and the
standard series ISO/IEC 2700X.
IT security and functional safety are
tighten together and suitable concepts are needed to support both (IT
security and functional safety). The concepts has to be efficient and
effective to guarantee IT security and functional safety.
Engineer's Office EDOH offers a wide range of services and support to
fulfil the different standards in the area of IT security and functional
safety. The owner of EDOH is a licensed evaluator/assessor regarding
Common Criteria and different standards regarding functional safety.
Additional, EDOH has deep knowledge in
cryptographic algorithms and cryptographic systems as well as in
telecommunication standards (ISDN PBX, Next Generation Network (NGN), SIP/SDP,
Asterisk PBX etc.)
The tool "IT-Grundschutztool" of the
German BSI is available for developing and documenting security
concepts. Protection Profiles (PP) and Security Targets (ST) can be developed
according to "Common Criteria".
Details about services and support regarding IT security: