cryptoanarchy.wiki

Arise, you have nothing to lose but your barbed wire fences!

1996-03-22 - C2 rating of NT

Header Data

From: Mark Aldrich <maldrich@grctechs.va.grci.com>
To: cypherpunks@toad.com
Message Hash: 9d1de653d01ad6d1b1cfbe539b2c57405b031fa6f5b277c839d71465c748e51c
Message ID: <Pine.SCO.3.91.960321173452.18669B-100000@grctechs.va.grci.com>
Reply To: N/A
UTC Datetime: 1996-03-22 12:36:23 UTC
Raw Date: Fri, 22 Mar 1996 20:36:23 +0800

Raw message

From: Mark Aldrich <maldrich@grctechs.va.grci.com>
Date: Fri, 22 Mar 1996 20:36:23 +0800
To: cypherpunks@toad.com
Subject: C2 rating of NT
Message-ID: <Pine.SCO.3.91.960321173452.18669B-100000@grctechs.va.grci.com>
MIME-Version: 1.0
Content-Type: text/plain


Date: Thu, 21 Mar 1996 08:09:14 -0500 (EST)
From: Mark Aldrich <maldrich@grctechs.va.grci.com>
To: owner-cypherpunks@toad.com
Subject: Re: your mail

On Wed, 20 Mar 1996 owner-cypherpunks@toad.com wrote:

<snip>

> 
> Basically, I'm now questioning the C2 rating of Windows NT.  The 
> entire security layer is  modular to the Kernel.  As a modular 
> driver, it can be removed, rewritten, and replaced.   
> 
> So, what makes it secure?  What gives it the C2 Rating?  How would 
> one go about getting a C2 rating?

Politics make it C2.  The DoD mandated, years ago, that all their OSs had 
to go to the C2 level of trust.  Further, they had also mandated POSIX 
compliance in just about every procurement that they had to publish in CBD.

Well, they then proceeded to ignore their own policy and they bought MS 
DOS all over the damn place because everyone wanted the stuff just like 
they have at home.  You can't play DOOM on SCO UNIX, ya know...

So, in order to not look like a bunch of incoherent IRM loosers, they 
effectively forced the C2 and POSIX compliance stickers onto Windows NT 
even though everyone (including some nameless NCSC personnel with whom 
I've spoken) clearly state that C2/POSIX and MS Windows NT is an 
oxymoron.  Now everyone can claim to be running C2 and POSIX systems, 
even though, by admission of MS, you can't have NT configured for both at 
the same time.

Duhhhhhh...  

------------------------------------------------------------------------- 
|      Liberty is truly dead              |Mark Aldrich                 | 
|    when the slaves are willing          |GRCI INFOSEC Engineering     | 
|     to forge their own chains.          |maldrich@grci.com            | 
|        STOP THE CDA NOW!                |MAldrich@dockmaster.ncsc.mil | 
|_______________________________________________________________________| 
|The author is PGP Empowered.  Public key at:  finger maldrich@grci.com |
|    The opinions expressed herein are strictly those of the author     | 
|         and my employer gets no credit for them whatsoever.           | 
-------------------------------------------------------------------------

Thread