Security Functional Requirements for The Development of a Biometrics Attendance System

摘要

The traditional validation process of the attendance system today still has myriad threats in its use. One of that is popularly known as the manipulation of attendance data (especially if using paper-based). This study aims to improve security during the validation system by designing a security document that can be used as a guide when developing an attendance system. After following each step in the common criteria framework, a security document will be generated later. The document is also commonly referred to as the Protection Profile (PP) of the document. PP documents can be used as a basic guide when a developer will build a product. Generally, products related to security aspects need this kind of guidance. By describing 6 threats which are divided into 6 Security Objectives (SO). 11 Security Functional Requirements (SFR) are needed to deal with the threat. And at the end of the section, it is illustrated the correlation each SFR has been able to overcome all threats. With every threat, SO, and SFR mapped.