From owner-freebsd-hackers Thu Oct 10 15:35: 3 2002 Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EC7B737B401 for ; Thu, 10 Oct 2002 15:35:01 -0700 (PDT) Received: from fledge.watson.org (fledge.watson.org [204.156.12.50]) by mx1.FreeBSD.org (Postfix) with ESMTP id F384243EC2 for ; Thu, 10 Oct 2002 15:35:00 -0700 (PDT) (envelope-from robert@fledge.watson.org) Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3]) by fledge.watson.org (8.12.4/8.12.4) with SMTP id g9AMYUOo040334; Thu, 10 Oct 2002 18:34:30 -0400 (EDT) (envelope-from robert@fledge.watson.org) Date: Thu, 10 Oct 2002 18:34:30 -0400 (EDT) From: Robert Watson X-Sender: robert@fledge.watson.org To: Terry Lambert Cc: Steve Kudlak , "Roman V. Mashak" , "'hackers@freebsd.org'" , "Nelson, Trent ." Subject: Re: C-2(Security) blues and the like In-Reply-To: <3DA5FF43.D9786031@mindspring.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, 10 Oct 2002, Terry Lambert wrote: > Robert Watson wrote: > > The first thing you are > > probably interested in is the Common Criteria description, which I believe > > is available from ISO. > > ...which answers the "how do I get it?" followup question that naturally > comes from the CAPP/LSPP profile references for the various EAL levels: > "You pay ISO through the nose for it". > > Are ISO standards still on the order of US$9 per single-sided page? I > just got my copies of the ECMA standards on CDROM (for free...). Actually, I believe that the CC should be available for free on the web somewhere. Unfortunately, I forget where. Last time I got it, it was a free PDF download. The CAPP and LSPP documents should be on www.nsa.gov somewhere, or off the radium web page. Another good acronym to google is NIAP. At this point, to be used in .mil, an operating system has to either be evaluated, or "in evaluation", or have a special exemption. Robert N M Watson FreeBSD Core Team, TrustedBSD Projects robert@fledge.watson.org Network Associates Laboratories To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message