> >>> Marcus J Ranum <mjr @
com> 12:15 25 July 1995 >>>
> > This is such a common misapprehension I should probably add this
> > spiel to the FAQ:
> >"Designed to meet C2" is not the same as "evaluated at C2" ....
> I concur.
> Could you also summarize the Orange Book evalation terminology in the FAQ.
Don't bother. The Orange book is useless for firewalls. If anything,
look at the new federal criteria or the European Common Criteria.
Neither of these really address the issues or criteria for operating
an internet firewall.
[mjr's insightufl comments deleted]
> The Orange Book criteria were intended to be applied in essentially a
> environment. Any focus on the "rainbow" documents should instead look at the Trusted
> Network criteria focusing on the Multiple Level Security (MLS) efforts which come closer
> to the problems being addressed in firewalls where the system has to service an
> unsecured, potentially hostile environment.
Even the TNI isn't real helpful. The DOD standards where designed for a
secured physical environment (Marines and M16s) and a benign environemnt
The internet is as far from that environement as you can get.
The evaluation of a product to a criteria is useful for the
product (provided you have the time and money for it), but it
isn't going to do alot for making that product firewall ready.
It is just as easy to take a B1 evaluated OS and make it a
bad firewall as it is a C2, C1 or D evaluated system.
firewall sysadmin and former VSA (been there, done both!)
John G. Thompson jgt10 @
Amdahl Corporation, P.O. Box 3470 MS 383, Sunnyvale, CA 94088-3470
[The opinions expressed are MINE. They do not necessarily reflect the
policies, procedures, press releases or opionions of the Amdahl Corporation.]