From owner-trustedbsd-discuss@FreeBSD.ORG  Sat Aug 26 05:38:08 2006
Return-Path: <owner-trustedbsd-discuss@FreeBSD.ORG>
X-Original-To: trustedbsd-discuss@FreeBSD.org
Delivered-To: trustedbsd-discuss@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9499116A4DA
	for <trustedbsd-discuss@FreeBSD.org>;
	Sat, 26 Aug 2006 05:38:08 +0000 (UTC)
	(envelope-from rwatson@FreeBSD.org)
Received: from cyrus.watson.org (cyrus.watson.org [209.31.154.42])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 4DDB643D58
	for <trustedbsd-discuss@FreeBSD.org>;
	Sat, 26 Aug 2006 05:38:08 +0000 (GMT)
	(envelope-from rwatson@FreeBSD.org)
Received: from fledge.watson.org (fledge.watson.org [209.31.154.41])
	by cyrus.watson.org (Postfix) with ESMTP id 5A7FD46BD9;
	Sat, 26 Aug 2006 01:38:07 -0400 (EDT)
Date: Sat, 26 Aug 2006 06:38:07 +0100 (BST)
From: Robert Watson <rwatson@FreeBSD.org>
X-X-Sender: robert@fledge.watson.org
To: 473219@googlemail.com
In-Reply-To: <e782d7390608250956v42d05ceew8f61b0e21ad653d@mail.gmail.com>
Message-ID: <20060826063327.N43127@fledge.watson.org>
References: <e782d7390608250956v42d05ceew8f61b0e21ad653d@mail.gmail.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: trustedbsd-discuss@FreeBSD.org
Subject: Re: Common Criteria certification?
X-BeenThere: trustedbsd-discuss@FreeBSD.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: TrustedBSD General Discussion List <trustedbsd-discuss.FreeBSD.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/trustedbsd-discuss>, 
	<mailto:trustedbsd-discuss-request@FreeBSD.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/trustedbsd-discuss>
List-Post: <mailto:trustedbsd-discuss@FreeBSD.org>
List-Help: <mailto:trustedbsd-discuss-request@FreeBSD.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/trustedbsd-discuss>, 
	<mailto:trustedbsd-discuss-request@FreeBSD.org?subject=subscribe>
X-List-Received-Date: Sat, 26 Aug 2006 05:38:08 -0000


On Fri, 25 Aug 2006, 473219@googlemail.com wrote:

> Have any official evaluations been done (or planned) to test BSD operating 
> systems for Common Criteria[1,2] certification ?
>
> BSD could be a good match for my project, but the project must use an OS 
> with CC EAL certification.  Sponsoring a full CC EAL evaluation would be too 
> expensive, but might be possible if there was previous work to start from. 
> (Perhaps there is a "chicken-and-egg" problem!)
>
> Thanks!
>
> [1] http://www.commoncriteriaportal.org/
> [2] http://niap.bahialab.com/cc-scheme/index.cfm

BSD-derived systems have been evaluated numerous times, but recently almost 
always in the context of products with a BSD foundation OS, rather than as a 
BSD OS being evaluated in its own right.  Mac OS X "Panther" is the only 
really recent common criteria evaluated stand-alone BSD operating system that 
I am aware of; the other recent evaluations have all been things like 
FreeBSD-based firewalls and appliances, so evaluated to network 
appliance/device protection profiles rather than CAPP.

That said, FreeBSD 6.2 should meet most (if not all) technical requirements 
for a CAPP evaluation, as it will contain the audit merge from 7-CURRENT, at 
least, if my network connectivity is good enough over the next two weeks! 
I'm currently traveling in India, and my connectivity varies quite a bit by 
where I'm visiting, so it may be delayed a bit.  :-)

Robert N M Watson
Computer Laboratory
University of Cambridge