Question: C2 Security Configuration for general Unix and Solaris/Trusted Solaris (Auditing)
From: William Arens (william_arens_at_emainc.com)
Date: 02/21/04
- Next message: FromTheRafters: "Re: Complete list of Nasties?"
- Previous message: Jurren Bouman: "Re: Trojan Heaven"
- Next in thread: grog: "Re: Question: C2 Security Configuration for general Unix and Solaris/Trusted Solaris (Auditing)"
- Reply: grog: "Re: Question: C2 Security Configuration for general Unix and Solaris/Trusted Solaris (Auditing)"
- Reply: Erlend Leganger: "Re: Question: C2 Security Configuration for general Unix and Solaris/Trusted Solaris (Auditing)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 20 Feb 2004 15:10:45 -0800
While reviewing the DoD 5200.28-STD "DEPARTMENT OF DEFENSE TRUSTED
COMPUTER SYSTEM EVALUATION CRITERIA" document and looking over
"Security Requirements for Automatic Data Processing (ADP)
Systems," for Federal systems requiring C2 compliance I realized
that I do not understand the distinction between Solaris and
Trusted Solaris.
On the issue of Accountability(auditing)
1. Can Unix machines using only the syslogd facility meet 'C2'
or higher?
2. Does Trusted Solaris offer any system resource advantage
(CPU and Disk utilization) over Solaris using BSM when
the need for accountability requires 'C2' level of logging?
SolarisOE SunSHIELD™ Basic Security Module (BSM)
- Next message: FromTheRafters: "Re: Complete list of Nasties?"
- Previous message: Jurren Bouman: "Re: Trojan Heaven"
- Next in thread: grog: "Re: Question: C2 Security Configuration for general Unix and Solaris/Trusted Solaris (Auditing)"
- Reply: grog: "Re: Question: C2 Security Configuration for general Unix and Solaris/Trusted Solaris (Auditing)"
- Reply: Erlend Leganger: "Re: Question: C2 Security Configuration for general Unix and Solaris/Trusted Solaris (Auditing)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
