[Cryptography Team] re: Common Criteria Documentation...
Kyle Hamilton
aerowolf at gmail.com
Wed Oct 18 01:09:20 UTC 2006
Thank you, Craig.
If you look at the bottom of the Cryptography page on the
minnow/squeak wiki, you'll see what I mean by "serious redesign".
I'll go through the EAL documentation and the PP, and see what else
isn't currently implemented but needs to be. (I hope that someone
else can and will, too, since this is going to require something close
to actuarial skills. I'm good with details, but I sometimes get so
tangled in them that I forget something important.)
But, that brings this up: this list is about cryptography, but our
direction is (eventually, as stated by Krishna) CC EAL 4+ validation.
This requires FIPS-validated cryptographic software, but there's a lot
more to it than that. Are we going to split efforts between
cryptography/FIPS and the remainder of the CC validation, and maybe do
it more quickly? Are we going to focus on FIPS first, and only after
we get something that we can submit for validation then worry about
the remainder for CC?
-Kyle H
On 10/17/06, Craig Latta <craig at netjam.org> wrote:
>
> Hi Kyle--
>
> > Since the system is written in itself (and runs inside itself), there
> > are several things in the PP that require redesigning very large parts
> > of the system. We need at least one VM hacker on this list to
> > evaluate the feasability of some of the needed changes.
>
> I can do that.
>
>
> thanks!
>
> -C
>
> --
> Craig Latta
> http://netjam.org/resume
>
>
> _______________________________________________
> Cryptography mailing list
> Cryptography at lists.squeakfoundation.org
> http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/cryptography
>
--
-Kyle H
More information about the Cryptography
mailing list