This is the Common Critiera Security Target for the AEP Keyper (the HSM we use for the root DNSSEC). I believe it's a good example of how to document claims in a more formal way. As bonus it also shows some interesting design choices. - http://www.cybersecurity.my/mycc/document/mycpr/C037/AEP_Keyper_EAL4_ASE_1.3.pdf jakob