Great Circle Associates Firewalls
(November 1995) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Firewall Holes
From: cdavidso @ nmh . org (Clyde Davidson)
Date: Wed, 22 Nov 1995 08:47:05 -0600
To: Firewalls @ GreatCircle . COM
Cc: frankw @ in . net 
Frank Willoughby wrote:

>2) Secure Computing's idea was to build the firewall on top of a secure
>   O/S.  This helps to elminiate a large part of the security vulnerabilities
>   which are inherent in COTS (Commercial Off-The-Shelf-Systems).  Harris
>   uses a similar approach.  Sadly, neither company (last time I checked)
>   hasn't gone far enough to secure the firewalling capabilities, IMHO.

Could you kindly explain where they haven't "gone far enough" and what you
think is missing? Thanks!


~~~~~~~~~~~~~~~~~~~~~~~~~~
Clyde Davidson
Northwestern Memorial Hospital,
Data Security Coordinator, Information Services
Indexed By Date Previous: Re: Secret key versus obscurity
From: Robert Bonomi <bonomi @ delta . eecs . nwu . edu>
Next: Re: Securid on bsdi
From: Frederick M Avolio <avolio @ trusted . com>
Indexed By Thread Previous: Re: Secret key versus obscurity
From: vin @ shore . net (Vin McLellan)
Next: security through obscurity
From: "Marcus J. Ranum" <mjr @ iwi . com>
Google
 
Search Internet Search www.greatcircle.com