Re: [Fed-Talk] Enterprise encryption--Apple's FIP encryption now in Review Pending stage
Re: [Fed-Talk] Enterprise encryption--Apple's FIP encryption now in Review Pending stage
- Subject: Re: [Fed-Talk] Enterprise encryption--Apple's FIP encryption now in Review Pending stage
- From: Paul Nelson <email@hidden>
- Date: Mon, 2 Aug 2010 14:42:54 -0500
Does anyone know exactly what crypto software is being evaluated? Is it just the stuff in the Security.framework? Is there any Kerberos stuff included in the evaluation? Does the Kerberos implementation use the Security.framework in 10.6.4? Kerberos did not use the cryptos from the Security.framework in 10.5, but might in 10.6. The Kerberos framework MIT source used to be on the opensource.apple.com site, but it is not anymore. Also, what about the Heimdal Kerberos that now comes with 10.6?
Kerberos needs the FIPS 140 as much as anything else on the Mac. Hopefully it is included! For FIPS 140, there must be documentation (section 4.1). Has anyone seen these?
Paul Nelson
Thursby Software Systems, Inc.
On Aug 2, 2010, at 1:59 PM, Link, Peter R. wrote:
>
> ****Apple's FIPS Cryptographic Module**** has finally moved to Review Pending. Not sure how much longer it will take to get out of this stage but it's a lot better than hibernating in the IUT stage. (Thanks Apple and the testing lab for getting it this far!!!)
>
>
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden