Abstract
The World Wide Web (WWW) indtroduces exciting possibilities for the use of new technology
in the formal evaluation of trusted systems. This is a report of a work in progress. It
discusses the conceptual foundations of the WWW use in formal evaluations of the security
properties of a system, and offers some of the initial insights gained in its use. Silicon
Graphics is using this structure for the submittal of documentation for the formal evaluation
of the Trusted IRIX/CMW 6.2 operating system.