TY - JOUR N2 - The paper presents a new ontology-based approach to the elaboration and management of evidences prepared by developers for the IT security evaluation process according to the Common Criteria standard. The evidences concern the claimed EAL (Evaluation Assurance Level) for a developed IT product or system, called TOE (Target of Evaluation), and depend on the TOE features and its development environment. Evidences should be prepared for the broad range of IT products and systems requiring assurance. The selected issues concerning the author’s elaborated ontology are discussed, such as: ontology domain and scope definition, identification of terms within the domain, identification of the hierarchy of classes and their properties, creation of instances, and an ontology validation process. This work is aimed at the development of a prototype of a knowledge base representing patterns for evidences. L1 - http://czasopisma.pan.pl/Content/93753/mainfile.pdf L2 - http://czasopisma.pan.pl/Content/93753 PY - 2013 IS - No 2 EP - 91 KW - Common Criteria KW - IT security evaluation KW - knowledge engineering KW - modelling KW - ontology KW - assurance methods A1 - Białas, Andrzej PB - Committee of Informatics of Polish Academy of Science PB - Institute of Theoretical and Applied Informatics of Polish Academy of Science VL - vol. 25 DA - 2013 T1 - Ontology based model of the Common Criteria evaluation evidences SP - 69 UR - http://czasopisma.pan.pl/dlibra/publication/edition/93753 T2 - Theoretical and Applied Informatics ER -