Re: [Fed-Talk] Mac OS X Common Criteria
Re: [Fed-Talk] Mac OS X Common Criteria
- Subject: Re: [Fed-Talk] Mac OS X Common Criteria
- From: "Shawn A. Geddis" <email@hidden>
- Date: Wed, 2 Jul 2008 17:45:36 -0500
(Stepping away from vacation long enough to send some critical email)
Nicholas et. al.
To add to Joel's comments...
• Mac OS X 10.3.6 Was certified, but the process started when Apple
was shipping 10.2.5
• The biggest flaw in the CC process is that most vendors end up
beginning the certification
with a version that already shipped. however, by the time the
certification is complete
it is one that no one wants (too old).
• Apple worked very hard and succeeded in certifying the version that
was shipping at time of issuance
• Apple has begun the process now and a version in the future will be
the actual version certified
• Apple is working with BSI in Germany and not US-based Certified
Labs / NIAP...
-Shawn
On Jul 2, 2008, at 10:58 AM, Joel Rennich wrote:
On Jul 2, 2008, at 10:06 AM, Nicholas Nam wrote:
Can you guys give your 2c? There's a lot of speculation and
assumption. Those of us dealing with especially strict
certification agents and approval authorities need a definite answer.
Shawn is taking a well-deserved vacation this week, so you'll have
to allow me, his manager, to field this one.
We publicly started this latest round of Common Criteria
certification when we were listed as "In Evaluation" on May 9th.
However, there is no concrete timeline as to when this will be done.
Anyone familiar with this process knows that it is much more
laborious than even FIPS 140-2 validation. As such we have no way of
stating what the actual Common Criteria validated release will be.
We're hoping on certifying the OS that's shipping at the time of
certification, and yes I understand the circularity of that
statement. While I couldn't speculate as to whether it's 10.5. or a
later version that gets certified, I can say that you won't be
seeing anything earlier than 10.3.6 get certified.
We're hoping that we learned enough from the first time we did this
that we'll have a much better time of it, but it's too early to make
any predictions at this time.
I know that's not the definitive answer that you'd like to hear.
When we have something solid on the timeline and versions you can
rest assured that we'll be shouting it far and wide.
Joel
Consulting Engineering Manager
Apple Enterprise Sales
- Shawn
_____________________________________________________
Shawn Geddis Security Consulting Engineer Apple Enterprise
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden