At 12:57 PM 4/19/00 -0400, Paul D. Robertson wrote:
>On Wed, 19 Apr 2000, Oscar Rau wrote:
>
> > The only 2 firewalls that have passed NSA's security tests are FW-1 and
> PIX.
>
>That's funny, I recall positive reports for Sidewinder and Guantlet, but I
>think the mitten site was pulled about six months ago, do you have a
>reference for the above assertion?
Paul, you're thinking of the tests that NSA performed on firewalls a few
years ago. They issued reports on their testing of Gauntlet, Sidewinder,
and V-One Smartwall IIRC. NSA tested Firewall-1 but the results were never
released.
What Oscar's reporting on is the Common Criteria testing of firewalls by
third-party commercial testing labs. Four firewalls have received Common
Criteria evaluations - Milkyway, PIX, Lucent Managed Firewall, and
Firewall-1. Only Firewall-1 and PIX have been found conformant to the NSA
Firewall Protection Profile; Firewall-1 both traffic filter and application
gateway profiles.
Milkyway was tested in Canada; LMF was tested in the US but does not claim
conformance to the US Firewall Protection Profile.
So, Oscar's comment is correct if you replace "NSA's security test" with
"NSA's security requirements". NSA isn't the sole author of the profile.
-Rick
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
