<div dir="ltr"><br><div class="gmail_extra"><br><br><div class="gmail_quote">On Fri, Jun 20, 2014 at 1:32 PM, Salz, Rich <span dir="ltr"><<a href="mailto:rsalz@akamai.com" target="_blank">rsalz@akamai.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div class="">> I don't think there's any good proof that FIPS certification is indeed better than nothing.<br>
<br>
</div>There is only one that I have found: paying customers require it.<br></blockquote><div><br></div><div><div style="font-family:arial,sans-serif;font-size:13px">Yes this is true and if engineering management plays nice there are are</div>
<div style="font-family:arial,sans-serif;font-size:13px">many positive cultural side effects. </div><div style="font-family:arial,sans-serif;font-size:13px"><br></div><div style="font-family:arial,sans-serif;font-size:13px">
A well managed and tightly controlled trusted computing base establishes a manageable </div><div style="font-family:arial,sans-serif;font-size:13px">code base and a foundation for groups to build on. Code in the trusted code base might</div>
<div style="font-family:arial,sans-serif;font-size:13px">differ in known ways from the main line product but any change needs to be reviewed and</div><div style="font-family:arial,sans-serif;font-size:13px">tested by the trusted code base team.</div>
<div style="font-family:arial,sans-serif;font-size:13px"><br></div><div style="font-family:arial,sans-serif;font-size:13px">Code fixes to the trusted base can be offered to a customer with full disclosure</div><div style="font-family:arial,sans-serif;font-size:13px">
that they are leaving the trusted computing bases and with the correct set of NDAs</div><div style="font-family:arial,sans-serif;font-size:13px">in place can be disclosed sufficiently to lets the customer decide. Consider the recent</div>
<div style="font-family:arial,sans-serif;font-size:13px">ssh bugs... these can be fixed packaged and offered. </div><div style="font-family:arial,sans-serif;font-size:13px"><br></div><div style="font-family:arial,sans-serif;font-size:13px">
The latency of certification makes it obvious to savvy customers that they will </div><div style="font-family:arial,sans-serif;font-size:13px">have to depart from the certified base in measured ways.</div><div style="font-family:arial,sans-serif;font-size:13px">
<br></div><div style="font-family:arial,sans-serif;font-size:13px">Sure it is a check-box for doing business but in many cases is not deployed.</div><div style="font-family:arial,sans-serif;font-size:13px"><br></div><div style="font-family:arial,sans-serif;font-size:13px">
It does take a handful of dedicated well managed engineers working relentlessly as</div><div style="font-family:arial,sans-serif;font-size:13px">well as a plan for the long term. Cowboys need not apply.....</div><div class="" style="font-family:arial,sans-serif;font-size:13px">
<div id=":1fb" class="" tabindex="0"><img class="" src="https://mail.google.com/mail/u/1/images/cleardot.gif"></div></div></div></div><div><br></div>-- <br><div dir="ltr"> T o m M i t c h e l l</div>
</div></div>