9 Automated database of security engineering information containing policy, threat, and assumption statements and security objectives, for use by software designers in generating protection profiles, security targets, and security vulnerability assessments so that software can be tested against an international security standard