[Fed-Talk] Apple FIPS (revalidation) now in Review Pending
[Fed-Talk] Apple FIPS (revalidation) now in Review Pending
- Subject: [Fed-Talk] Apple FIPS (revalidation) now in Review Pending
- From: "Link, Peter R." <email@hidden>
- Date: Wed, 04 Jan 2012 08:08:29 -0800
- Acceptlanguage: en-US
- Thread-topic: Apple FIPS (revalidation) now in Review Pending
http://csrc.nist.gov/groups/STM/cmvp/inprocess.html click on pdf link to see status of all submissions
Finally, one of the three Apple cryptographic modules currently in process for FIPS 140-2 validation has reached the second step, Review Pending. The 10.7 update (Shawn will correct me if I'm wrong) has finished the Implementation Under Test stage and moved forward. The iPhone and iPad cryptographic modules are still in IUT and have been there for a long time.
The regular Apple FIPS cryptographic module is simply a 10.7 update of the CDSA/CSP module previously approved for 10.6. This module does not include any of the new CommonCrypto code nor does it include anything related to FileVault-2. The revalidation for 10.7 will help those third-party vendors who still rely on CDSA technology. I'm not sure how it will help anyone justify the use of 10.7 on federal computers but at least the process is moving forward and is a step in the right direction.
Peter Link
Cyber Security Analyst
Cyber Security Program
Lawrence Livermore National Laboratory
PO Box 808, L-315
Livermore, CA 94550
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden