On Mon, 30 Sep 96 , Keith McCammon wrote:
>
>C2 security seems basically worthless. You can't have any network, and if
>a perpetrator has physical access to the machine, he/she can just boot
>off a floppy to read your files.
>
>So, if you can't use it with a network as a file server, and if it's
>easily compromised with physical access to the machine, what is a
>practical example of where C2 is actually useful?
>
The issue is how the developer/vendor interprets the C2 requirements. If
he/she 's fishing for the certificate to fill a segment of the market,
chances are that he/she will comply to the letter of the requirements (it
shall be possible to...) In many respects Win NT complies to the C2
requirements (probably to all of them), but once you try to implement them
to set up a secure system, nothing works anymore. It's all very well to be
able to protect system executables from the users, but if you have to give
RWXD permissions to Everybody to allow the user(s) to actually use the
system, there goes any confidence in such a certificate.
It is true that in the C2 requirements there is no mention of networking,
and that, to my knowledge, no networked system has been granted any
certicates (yet). There are, on the other hand, a few operating systems
around that have been written more to the idea behind the requirements than
to the letter. But, you already guessed it, they're in a somewhat higher
pricerange than WinNt.
A while back there was mention of recipes to set up permissions on NT 3.51
in a more or less decent way, could someone point me in the right direction
where I can find those, it would be much appreciated.
Thx in advance,
Frank De Hert
System/Security Manager
NATO Programming Centre
|
|
