产品生命周期与配置管理
本文是基于CC PART1文档整理而成,虽然主要总结的是配置管理的知识,文中或多或少会涉及CC的缩略词,这里先简单介绍一下。
- TOE CC认证的目标
- ALC 生命周期
- DVS 开发环境安全
- AGD 指导文档
- PRE 操作准备
- OPE 操作环境
- ST 安全目标
产品生命周期概述
产品生命周期,查看“产品生命周期与配置管理系统的关系”章节图片里的“Product Life Cycle”。
产品生命周期大致可以分为这几部分:开发及测试 – 生产及测试 – 交付 – 用户接收及使用
开发及测试:产品定义,项目管理,开发/测试,
生产及测试:制造,集成,生产,存储,标签
交付:交付前准备,物流/快递
用户使用:接收,安装,操作
其中,开发/生产/交付属于开发者的职责。接收/安装/操作属于用户的职责。
开发环境包括了开发/生产/交付前的准备,ALC里的DVS就是指的这里的开发环境安全。
操作环境只保护用户在安装好产品之后的实际环境。操作环境和ST里的OE安全目标相关,也和AGD OPE文档相关。
配置管理系统就是为产品生命周期的配置管理提供支撑,核心思想是对配置的变更进行管控及追溯。
配置管理
什么是配置管理
CCPART1 第147段定义了配置管理。
discipline applying technical and administrative direction and surveillance to: identify and document the functional and physical characteristics of a configuration item, control changes to those characteristics, record and report change processing and implementation status, and verify compliance with specified requirements.
我理解的配置管理功能是产品从0到1的过程中,所有组成产品的各部分的归档和版本控制管理。比如一个常规的产品,组成部分可能包括软件,硬件,结构,文档等几个部分。那么配置管理的作用是能还原产品从0-1的任意阶段的状态。比如0.3阶段,软件完成了1,2,3功能,代码在哪里,硬件/结构可以是图纸模式(实际上只要有图纸就可以生产转换为实体产品,当然我认为实体的产品可以在配置管理范围),文档还不存在,因为可能文档要在0.7版本才开始编写等。
配置管理的过程是:根据配置管理计划,利用配置管理系统,得到配置管理输出
配置管理系统
CCPART1 第154段定义了配置管理。
set of procedures and tools (including their documentation) used by a developer to develop and maintain configurations of his products during their life-cycles.
Configuration management systems may have varying degrees of rigour and function. At higher levels, configuration management systems may be automated, with flaw remediation, change controls, and other tracking mechanisms.
配置管理系统由三个部分组成:配置管理工具,配置管理使用文档,配置管理流程
配置管理工具
CCPART1 第156段定义了配置管理。
manually operated or automated tools realising or supporting a configuration management system.
For example tools for the version management of the parts of the TOE.
用于支撑配置管理系统的手动/自动化工具。比如版本管理工具,典型的有SVN和Git。
配置管理使用文档
CCPART1 第157段定义了配置管理。
part of the configuration management system, which describes, how the configuration management system is defined and applied by using
for example handbooks, regulations and/or documentation of tools and procedures.
配置管理使用文档包括:配置管理系统的定义和介绍文档,配置管理工具使用文档,配置管理流程操作文档
配置管理计划
CCPART1 第153段定义了配置管理。
description of how the configuration management system is used for the TOE.
The objective of issuing a configuration management plan is that staff members can see clearly what they have to do. From the point of view of the overall configuration management system this can be seen as an output document (because it may be produced as part of the application of the configuration management system). From the point of view of the concrete project it is a usage document because members of the project team use it in order to understand the steps that they have to perform during the project. The configuration management plan defines the usage of the system for the specific product; the same system may be used to a different extent for other products. That means the configuration management plan defines and describes the output of the configuration management system of a company which is used during the TOE development.
配置管理计划定义了对于特定的产品怎么使用配置管理系统。
配置管理输出
CCPART1 第152段定义了配置管理。
results, related to configuration management, produced or enforced by the configuration management system
These configuration management related results could occur as documents (for example filled paper forms, configuration management system records, logging data, hard-copies and electronic output data) as well as actions (for example manual measures to fulfil configuration management instructions). Examples of such configuration management outputs are configuration lists, configuration management plans and/or behaviours during the product life-cycle.
配置管理输出包括配置管理系统生成的文档以及配置管理系统流程执行的行动。
配置管理系统生成的文档包括配置管理系统记录,配置管理列表(多个配置管理项),日志数据等。
配置管理系统记录
CCPART1 第155段定义了配置管理。
output produced during the operation of the configuration management system documenting important configuration management activities
Examples of configuration management system records are configuration management item change control forms or configuration management item access approval forms.
记录重要的配置管理活动,比如配置管理项的变更控制表单,比如配置管理项的访问审批表单
配置管理项
CCPART1 第150段定义了配置管理。
object managed by the CM system during the TOE development
These may be either parts of the TOE or objects related to the development of the TOE like evaluation documents or development tools. CM items may be stored in the CM system directly (for example files) or by reference (for example hardware parts) together with their version.
用于版本管理和变更控制的配置单元,可以是电子数据,硬件模块等。
配置管理列表
CCPART1 第151段定义了配置管理。
configuration management output document listing all configuration items for a specific product together with the exact version of each configuration management item relevant for a specific version of the complete product
This list allows distinguishing the items belonging to the evaluated version of the product from other versions of these items belonging to other versions of the product. The final configuration management list is a specific document for a specific version of a specific product. (Of course the list can be an electronic document inside of a configuration management tool. In that case it can be seen as a specific view into the system or a part of the system rather than an output of the system. However, for the practical use in an evaluation the configuration list will probably be delivered as a part of the evaluation documentation.) The configuration list defines the items that are under the configuration management requirements of ALC_CMC.
最终的配置管理列表是针对特定产品的特定版本的特定文档。
产品生命周期与配置管理系统的关系
参考文档
[1] CCPART1V3.1R5.pdf
[2] https://www.commoncriteriaportal.org/cc/