Trusted computing base

This article reads like a textbook. Please improve this article to make it neutral in tone and meet Wikipedia's quality standards. (February 2020)

The trusted computing base (TCB) of a computer system is the set of all hardware, firmware, and/or software components that are critical to its security, in the sense that bugs or vulnerabilities occurring inside the TCB might jeopardize the security properties of the entire system. By contrast, parts of a computer system that lie outside the TCB must not be able to misbehave in a way that would leak any more privileges than are granted to them in accordance to the system's security policy.

The careful design and implementation of a system's trusted computing base is paramount to its overall security. Modern operating systems strive to reduce the size of the TCB^{[not verified in body]} so that an exhaustive examination of its code base (by means of manual or computer-assisted software audit or program verification) becomes feasible.