Comments: K6 again, again and again. Therefore, H6.4 -- Compromise on Security before Delivery

i was once at a monthly meeting where somebody talked about security evaluations (the old C2, B2, A2, etc types stuff and the newer replacement, common criteria and protection profiles). supposedly a purpose of the security evaluations would be to allow customers to make some comparable security assessment about different security products from different vendors.

One of the comments was that there had been something like 64 common criteria evaluations of particular types of product and of the 64, 62 evaluations had some sort of unpublished deviations and/or exceptions (devaluing the usefulness of security comparisons).

Posted by Lynn Wheeler at May 15, 2007 09:39 AM
Post a comment









Remember personal info?






Hit Preview to see your comment.
MT::App::Comments=HASH(0x561dcc66eb08) Subroutine MT::Blog::SUPER::site_url redefined at /home/iang/www/fc/cgi-bin/mt/lib/MT/Object.pm line 125.