[Cryptography] "Is FIPS 140-2 Actively harmful to software?"

Salz, Rich rsalz at akamai.com
Fri Jun 20 09:56:18 EDT 2014


> https://www.niap-ccevs.org/Documents_and_Guidance/ccevs/GPOS%20Position%20Statement.pdf
> https://www.niap-ccevs.org/Documents_and_Guidance/ccevs/DBMS%20Position%20Statement.pdf
> (Just for good measure, they say the same about "Enterprise Security Management Products".)

I was told by a colleague who still works there that IBM, the Big Blue Mother of enterprise software, is winding down all common criteria certification efforts.

	/r$

--  
Principal Security Engineer
Akamai Technologies, Cambridge, MA
IM: rsalz at jabber.me; Twitter: RichSalz



More information about the cryptography mailing list