Re: [Fed-Talk] Leopard security config timeline?
Re: [Fed-Talk] Leopard security config timeline?
- Subject: Re: [Fed-Talk] Leopard security config timeline?
- From: "Shawn A. Geddis" <email@hidden>
- Date: Sat, 12 Jan 2008 16:49:08 -0500
On Dec 17, 2007, at 4:12 PM, Amanda Walker wrote:
On Dec 17, 2007, at 4:00 PM, Rex Sanders wrote:
Anybody have any idea when the NSA/Apple security guidelines for
Leopard
will be released?
Many of us are independently writing STIGs once again. I hope we
won't see
the long delays we saw for Tiger.
Solaris 10 has been out for over a year with no NSA guidelines yet.
In past interactions with NSA, I learned to never depend on
estimates of timeliness, though DISA was sometimes a bit better. If
I needed a STIG now, though, I'd be writing one, stamping it
"interim" or something, and expecting to use it for a year or two...
The Security Configuration Guides are the results of collaboration.
Historically, that was between Apple and NSA, but now includes
collaboration between all four groups: Apple, NSA, DISA, NIST.
Current timelines would make it available somewhere around the end of
the quarter.
- Shawn
_____________________________________________________
Shawn Geddis Security Consulting Engineer Apple Enterprise
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden