Security odds n' sods
The IBM
z/OS operating system (version 1.7) has been awarded Common Criteria certification at evaluation assurance level (EAL) 4+,
trumpeted Atsec Information Security Corp., of Austin, Texas. Atsec, which conducted the evaluation, has called the z/OS the world's most complex OS. Big Blue itself
FIPS 140-2 validation for the
OpenSSL open-source security modules are cursing their plight these days. Back in January, the
received certification from the National Institute of Standards and Technology. That premonition turned out to be premature, though. Shortly after the announcement, the Cryptographic Module Validation Program (a joint program between NIST and the Canadian Communications Security Establishment that validates products) requested additional changes to OpenSSL documentation and source-code packaging. The team has submitted those changes and is awaiting NIST response,
-
-
IT Modernization
Deputy Federal CIO Maria Roat details what makes for a winning Technology Modernization Fund proposal as agencies continue to submit major IT projects for potential funding.
-
Steve Kelman is concerned that the push for more spending with small disadvantaged businesses will detract from the goal of getting the best deal for agencies and taxpayers.