[Linux-aus] This one's big...
bhards at bigpond.net.au
Tue Aug 5 19:35:02 UTC 2003
-----BEGIN PGP SIGNED MESSAGE-----
On Tue, 5 Aug 2003 15:36 pm, Con Zymaris wrote:
> This essentially means that the last major barrier has been removed for
> Linux deployments in sensitive-government sites in the US, Candada, UK,
> Australia and NZ, which following a similar security certification
> protocol suite...
Maybe useful for marketing, but essentially meaningless. Hell, Microsoft got
some of their code certified. We don't know what assurance level was applied,
nor do we know what functionality was assessed. Maybe a real press release
would tell us, but IBMs website isn't too good today...
For a really cynical view, try:
Common Criteria certification requirements and open source aren't a good mix.
If you change the configuration, you have to get it recertified. What's the
point of being able to fix it if you can't use it afterwards because your
certification is blown? Sure, you have the code and can see what's wrong, but
it isn't helping you...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the linux-aus