This directory contains all documentation for the C5-DEC CAD (Common Criteria for Cybersecurity, Cryptography, Clouds – Design, Evaluation and Certification, Computer-Aided Design) project, organized into distinct categories to support different audiences and purposes.
See our technical specification traceability web site for a live view of the full specification tree and traceability coverage, produced by the C5-DEC SpecEngine.
manual/ - User and developer manualsAudience: End users, system administrators, and developers
Purpose: Practical, task-oriented documentation explaining HOW to use, configure, and operate the system.
Contents:
README.md - C5-DEC CAD user manual index, overview, and goalsinstallation.md - Installation instructions and workspace setupstart.md - Quick start guidecct.md - Common Criteria Toolbox user guidessdlc.md - Secure SDLC and Transformer documentationpm.md - Project and resource managementcpssa.md - Cyber-Physical System Security Assessmentcra.md - Cyber Resilience Act guidancecryptography.md - Classical and post-quantum cryptographytroubleshooting.md - Common issues and solutions_figures/ - Images and diagrams for manual documentationCharacteristics:
specs/ - Requirements and specifications (Doorstop)Audience: System architects, requirements engineers, QA teams, auditors
Purpose: Formal, traceable requirements and design decisions defining WHAT and WHY.
Contents:
mrs/ - Mission Requirements Specifications (root)srs/ - Software/System Requirements Specificationsarc/ - Architecture specificationsswd/ - Software Design specificationstcs/ - Test case specificationstrp/ - Test reportsSpecEngine/c5publish.py - Custom Doorstop publisher with Bootstrap CSSSpecEngine/c5-keyword.py - Keyword preprocessor/postprocessorSpecEngine/c5traceability.py - Configurable coverage statistics analyserSpecEngine/c5traceability_config.yaml - YAML configuration for coverage checks and document orderSpecEngine/c5browser.py - Interactive HTML browser generatorSpecEngine/c5fingerprint.py - Dependency content fingerprinting for items with references: file paths; flags stale items when source files changepublish.sh - Publishing orchestration scriptCharacteristics:
traceability/ - Published requirements traceabilityAudience: Stakeholders, auditors, project managers
Purpose: Generated HTML documentation showing full requirements traceability matrix.
Contents:
index.html - Traceability matrix home pageMRS.html, SRS.html, ARC.html, SWD.html, etc. - Published requirement documentstraceability.csv - Machine-readable traceability exporttemplate/ - HTML templates for publishingassets/ - Supporting files for published HTML (CSS, JS)Generation: Run cd docs/specs && ./publish.sh to regenerate from Doorstop sources.
The project uses a clear separation of concerns to avoid content duplication and minimize maintenance burden:
| Aspect | specs/ (Doorstop) |
manual/ |
|---|---|---|
| Focus | WHAT and WHY | HOW |
| Content | Requirements, acceptance criteria, design rationale | Setup guides, usage tutorials, configuration references |
| Audience | Architects, QA, auditors | Users, operators, developers |
| Format | Formal Doorstop documents | Narrative tutorials |
| Stability | Versioned, reviewed, formally approved | Living documentation, frequently updated |
| Content type | Owner | Example |
|---|---|---|
| User stories | Specs (SRS) | “As a CC evaluator, I want…” |
| Acceptance criteria | Specs (SRS) | “System shall load CC SFR database…” |
| Design rationale | Specs (ARC) | “Selected modular architecture due to…” |
| Architecture diagrams | Specs (ARC) + Schematics | Component relationship diagrams |
| CLI syntax | Manual | poetry run c5dec cct --filter... |
| Configuration options | Manual | Field-by-field YAML reference |
| Installation steps | Manual | Numbered procedures |
| Troubleshooting | Manual | Error messages and solutions |
| Code examples | Manual | Complete working examples |
| API documentation | Manual | Function signatures, parameters |