Great Circle Associates Firewalls
(August 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Is any O.S. w/IP enabled C2 certified?
From: lists @ lina . inka . de (Bernd Eckenfels)
Date: Sat, 3 Aug 1996 04:24:43 +0200 (MET DST)
To: spencerj @ dg-rtp . dg . com (Jon Spencer)
Cc: jturner @ loki . aetc . af . mil, Darwin_Martinez @ ins . com, noorder @ shire . btg . com
In-reply-to: <199608020135 . VAA06038 @ splinter . rtp . dg . com> from "Jon Spencer" at Aug 1, 96 09:35:19 pm 
Hi,

> So you can have a C2 TCSEC eval or C2 TNI eval or a C2 TDI eval.  We are
> in a B2 TNI eval and our partner is in a B2 TDI eval on top of ours.  And
> yes, I believe that C2 NT includes IP, but does not include the floppy disk
> and lots of other real world things.

Since C2 doesnt require verifying the code (which is nearly impossible
anyway), C2 only covers how it 'should' ork, not how it 'does' work. This
means buffer overruns, shell escape and all that stuff introduced by bugs
will not be covered from C2 Certification.

I thin B recommendation are slightly more detailed in verifying
implementations, right?

Greetings
Bernd
-- 
  (OO)      -- Bernd_Eckenfels @
 Wittumstrasse13 .
 76646Bruchsal .
 de --
 ( .. )  ecki @
 lina .
 {inka .
 de,ka.sub.org}  http://home.pages.de/~eckes/
  o--o     *plush*  2048/A2C51749  eckes @
 irc  +4972573817  *plush*
(O____O)       If privacy is outlawed only Outlaws have privacy
Follow-Ups:
References:
Indexed By Date Previous: Re:tis or not ...
From: potlicker @ morebbs . com
Next: Re: Is any O.S. w/IP enabled C2 certified?
From: chk @ psa . pencom . com (Christian Kuhtz)
Indexed By Thread Previous: Re: Is any O.S. w/IP enabled C2 certified?
From: spencerj @ dg-rtp . dg . com (Jon Spencer)
Next: Re: Is any O.S. w/IP enabled C2 certified?
From: chk @ psa . pencom . com (Christian Kuhtz)
Google
 
Search Internet Search www.greatcircle.com