Great Circle Associates Firewalls
(March 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: WinNT and C2
From: Leonard Miyata <leonard @ geminisecure . com>
Date: Tue, 18 Mar 1997 10:00:47 -0800 (PST)
To: NetSurfer <netsurf @ pixi . com>
Cc: firewalls @ GreatCircle . COM
In-reply-to: <199703181545 . FAA15356 @ mail . pixi . com> 
Your of course refering to the 'infamous' C2 utility that comes with the
Windows NT Resource kit. This is for 'Orange Book' compliance only

For those who are not familar with the 'Classic' Rainbow series of
reccomended computer security standards put out by the DOD/NCSC, this
is the story.

The TCSEC 'Orange Book' was the first of the series. Besides defining
the meanings of the term MAC, DAC, I&A, and Audit, it defines a way
to 'measure' security of a computer host. Orange book definitions of
a computer Host is defined as a single isolated computer with no remote
connections. (Besides asking for network connections the WinNT C2 will
also ask if you have floppy drive for DOS system diskettes. Since remote
connections are not allowed, system console access is the only 'certified'
way to access a WinNT host with Pure 'Orange Book').

The TNI ('Red Book') was the second of the series. Its purpose is to
extend the definitions defined in the 'Orange Book' to the context of
of a Computer Network. Both the TCSEC and TNI are U.S. standards. ITSEC
is a European standard based on the TCSEC and the TNI. The current 
discussion concerns ITSEC C2 for WinNT, and postdates the C2
utility that comes with the Resource Kit.

For further information, I'm including the message that K.M. thoughtfully
posted earlier to the list

Personal Opinions Provided by
Leonard Miyata
aka leonard @
 geminisecure .
 com
Gemini Computers Inc

>From goertzek @
 wangfed .
 comTue Mar 18 09:41:03 1997
Date: Thu, 6 Mar 97 15:00:39 -0500
From: "K.M." <goertzek @
 wangfed .
 com>
To: Eric_Dykema @
 sdsi .
 com, firewalls @
 GreatCircle .
 COM
Subject: Re: Trusted Systems

Try the following:

http://www.radium.ncsc.mil/tpep/epl/ - the NCSC evaluated products list
http://www.mitre.org/resources/centers/infosec/EPL/ - alternate EPL site

http://bilbo.isu.edu/security/isl/guforvn.html - NCSC-TG-002 Trusted Product 
Evaluations

http://www.tno.nl/instit/fel/refs/cc.html - Common Criteria

http://www.itsec.gov.uk/uksp06/certprod.html - UK ITSEC

http://www.itsec.gov.uk/ - general CESG (UK version of NCSC) and ITSEC servers

K.M.


=====

K.M. Goertzel
Manager, Business Development
Secure Systems & Services Operation
WANG I-NET Government Services
7900 Westpark Drive - MS 700
McLean, VA  22102-4299  USA
tel (703)827 3914
fax (703)827 3161 
email goertzek @
 wangfed .
 com



On Tue, 18 Mar 1997, NetSurfer wrote:

> 
> When I ran the C2 tool from the reskit, one of the items was having any
> network protocols on the machine.  If C2 disallows network protocols that
> would certainly block intrusions over the network.  Does C2 in fact
> prohibit network connections?
>
References:
Indexed By Date Previous: Re: securityalerts in Gauntlet?
From: "Steven E. Matkoski" <matkoski @ future . dreamscape . com>
Next: Where to position dial-in access.
From: "Kenneth W. Betcher" <kbetcher @ City . Winnipeg . MB . CA>
Indexed By Thread Previous: Re: WinNT and C2
From: "NetSurfer" <netsurf @ pixi . com>
Next: Re: WinNT and C2
From: William Burrow <aa126 @ fan . nb . ca>
Google
 
Search Internet Search www.greatcircle.com