Firewalls: Code review guidelines?

Firewalls
(July 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Code review guidelines?
From:	Adam Shostack <adam @ homeport . org>
Date:	Fri, 19 Jul 1996 08:50:53 -0500 (EST)
To:	firewalls @ greatcircle . com (Firewalls mailing list)

Does anyone have code review guidelines available?  The only ones I
can find on the web are a process description for nuclear power
plants, which while interesting, have different requirements than
firewalls. (Reliability above all else, somewhat trusted users, lots
of user interaction)

(A firewall, incidentally, should not be reliable above all else, it
should be secure first.  This means that it can fail in odd ways, as
long as it remembers to turn off all the network connections first.
The firewall should be secure first, reliable second.  Of course,
reliable is a big part of secure, but its not the only part.)

The guidelines are located at:
http://hissa.ncsl.nist.gov/publications/nistir4909/

Adam
-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume

Indexed By Date	Previous:	Re: bind address already in use From: Rob Quinn <rquinn @ sprint . net>
Indexed By Date	Next:	Re: SATAN Information From: Rey.LeClerc/New.York/ACMC
Indexed By Thread	Previous:	Majordomo results: Re: Majordomo results: ... (fwd) From: Bastian <bastian @ net2 . netacc . net>
Indexed By Thread	Next:	Re: SATAN Information From: Rey.LeClerc/New.York/ACMC