Tech moves fast! Stay ahead of the curve with Techopedia!
Join nearly 200,000 subscribers who receive actionable tech insights from Techopedia.
B2 security is a security rating for evaluating the security of computer applications and products to be used within government and military organizations and institutes. It is part of the classifications/ratings produced by the U.S. National Computer Security Center (NCSC) as part of the Trusted Computer System Evaluation Criteria (TESC), or the orange book.
B2 security primarily complements B1 security by extending discretionary and mandatory access control features to all objects within the data processing or computing solution. B2 security requires that the underlying system have a formal security policy in place that addresses all object access and handling procedures. B2 security is also called structured protection, where all elements are categorized and structured as critical and non-critical elements along with implementation of stricter security controls and authentication mechanisms throughout each access point.