Security odds n' sods
The IBM
z/OS operating system (version 1.7) has been awarded Common Criteria certification at evaluation assurance level (EAL) 4+,
trumpeted Atsec Information Security Corp., of Austin, Texas. Atsec, which conducted the evaluation, has called the z/OS the world's most complex OS. Big Blue itself
FIPS 140-2 validation for the
OpenSSL open-source security modules are cursing their plight these days. Back in January, the
received certification from the National Institute of Standards and Technology. That premonition turned out to be premature, though. Shortly after the announcement, the Cryptographic Module Validation Program (a joint program between NIST and the Canadian Communications Security Establishment that validates products) requested additional changes to OpenSSL documentation and source-code packaging. The team has submitted those changes and is awaiting NIST response,
-
-
Steven Kelman suggests we should spend more time planning for the known risks on the horizon.
-
IT Modernization
As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help.