Re: [Fed-Talk] no sensitive data on Macbooks at NIH
Re: [Fed-Talk] no sensitive data on Macbooks at NIH
- Subject: Re: [Fed-Talk] no sensitive data on Macbooks at NIH
- From: Michael <email@hidden>
- Date: Mon, 7 Apr 2008 12:37:50 -0400
On Apr 7, 2008, at 11:46 AM, Rex Sanders wrote:
According to Federal regulations, it's not encrypted if it's not
validated.
All Federal agencies are required to follow these rules, not just NIH.
At this time, nothing built-in to Mac OS X has FIPS 140-1 or 140-2
validation. Very few products from any source provide validated
file or
disk encryption for Mac OS X.
Thanks for the correction and links. Mac Books can run Windows and
Linux but I guess that does not help.
<http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm>
is a bit hard to understand, which of those items applies to Vista's
BitLocker and Check Point Software's Pointsec (item 208?). I gather
Pointsec is used for Windows XP at NIH, but the description does not
say Windows XP. SafeGuard Easy has FIP 140 but is not good enough
for NIH I guess.
What products provide FIPS 140 file or disk encryption for OS X at
this time?
I see lots of modules not end products that I can understand, i.e.
item #765 PGP Software Developer's Kit (SDK) Cryptographic Module.
Item #477 "Silicon Data Vault" is OS independent it says but requires
ATA HD.
Has anyone booted OS X from a FIPS 140 certified internal or external
hard drive, i.e. USB, Firewire, ATA, or SATA?
Michael
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden