Re: [Fed-Talk] FIPS 140-2
Re: [Fed-Talk] FIPS 140-2
- Subject: Re: [Fed-Talk] FIPS 140-2
- From: Peter Link <email@hidden>
- Date: Thu, 16 Aug 2007 10:01:28 -0700
..
1) adhere to the "open standards open source" adoption wave for Mac OS X
CDSA is an Open Source / Open Standard solution maintained by the
Open Group. Implementations are available for just about every
platform - including Windows.
CDSA: http://www.opengroup.org/security/l2-cdsa.htm
http://sourceforge.net/projects/cdsa/
Operating System : All 32-bit MS Windows
(95/98/NT/2000/XP), All POSIX (Linux/BSD/UNIX-like OSes)
2) achieve FIPS 140-2 certification over night (the module is
certified, not the implementation)
Correct Implementation of cryptography within an Operating System
does not rely on the approach of bolting something on after the
fact. Any vendor can attest to the fact that even when your product
meets all of the FIPS 140 requirements, it is not an "over night"
affair. Last confirmation given to me was the the NIST/CMVP queue
had a backup in the neighborhood of 8-9 months. That means Too many
modules in the queue and too few resources at NIST/CMVP. Improving
resources for them would significantly improve the time it takes in
this process for everyone involved.
...
Shawn,
I'm starting to get an idea of what to look for on the NIST
web site. Should I be watching (where??) for announcements from NIST
identifying testing of CDSA or of Apple-specific products?
I'll forward the full version of your email response to our
CIO and cyber people but I would like to give them information on
what to watch for. The NIST web site is very large and confusing and
having an idea of what to watch for and where it might be located
will help me immensely. Thanks.
--
Peter Link
Cyber Security Analyst
Cyber Security Program
Lawrence Livermore National Laboratory
PO Box 808, L-315
Livermore, CA 94550
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden