[H-GEN] Hmmmm - who's paranoid? ;)
gearon at computer.org
gearon at computer.org
Tue Feb 17 07:13:05 EST 1998
> > > [4] : *THE* reference for computer security. Defines the famous
> > > C3, C2, C1 security levels that NT weenies are so fond of
> > > touting. For reference, some unixes, with work, manage a C3
> > > rating, if memory serves. The ratings go all the way to A1,
> > > where it takes more time to document the code, than to write
> > > it.
> > NT scored C2 if it isn't connected to a network. If it is, I don't think
> > it qualifies for a secure rating. I believe some Unicies have received C2
> > accreditation, but I may be wrong.
>
> correction, NT scores a C2 if it's
> 1) not connected to a network, and
I would have to check this (my reference books are at home) but IIRC part of
the definition of C2 is that the computer is not connected in any way to
another computer (e.g. networked). Andrae hit the nail on the head though
when he said that these ratings aren't applicable to anyone but the US DoD.
Paul Gearon
gearon at computer.org
Microsoft - Where every morning is the dawn of a new error.
----------------------- HUMBUG General List --------------------------------
echo "unsubscribe general" | mail majordomo at humbug.org.au # To Unsubscribe
More information about the General
mailing list