Totality of protection mechanisms within a computer system, including hardware, firmware, and software, the combination responsible for enforcing a security policy.
Sources:
NIST SP 800-12 Rev. 1
under Trusted Computing Base
from
CNSSI 4009