Re: [cicm] Why do we need a high assurance API?
"Davidson, John A." <JOHN.A.DAVIDSON@saic.com> Fri, 22 July 2011 14:53 UTC
Return-Path: <JOHN.A.DAVIDSON@saic.com>
X-Original-To: cicm@ietfa.amsl.com
Delivered-To: cicm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA16721F8AF5 for <cicm@ietfa.amsl.com>; Fri, 22 Jul 2011 07:53:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.348
X-Spam-Level:
X-Spam-Status: No, score=-2.348 tagged_above=-999 required=5 tests=[AWL=-0.250, BAYES_00=-2.599, HTML_MESSAGE=0.001, MIME_BAD_LINEBREAK=0.5]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vs13hDr8KrBa for <cicm@ietfa.amsl.com>; Fri, 22 Jul 2011 07:53:21 -0700 (PDT)
Received: from cpmx.mail.saic.com (cpmx.mail.saic.com [139.121.17.160]) by ietfa.amsl.com (Postfix) with ESMTP id 0AE7B21F85F7 for <cicm@ietf.org>; Fri, 22 Jul 2011 07:53:20 -0700 (PDT)
Received: from 0599-its-sbg03.saic.com ([139.121.20.253] [139.121.20.253]) by cpmx.mail.saic.com with ESMTP id BT-MMP-3996033 for cicm@ietf.org; Fri, 22 Jul 2011 07:53:14 -0700
X-AuditID: 8b79132a-b7b62ae0000020af-a5-4e298eda1449
Received: from 0599-its-exbh01.us.saic.com (cpe-z7-si-srcnat.sw.saic.com [139.121.20.253]) by 0599-its-sbg03.saic.com (Symantec Brightmail Gateway) with SMTP id 47.D1.08367.ADE892E4; Fri, 22 Jul 2011 07:53:14 -0700 (PDT)
Received: from 0461-its-exmb09.us.saic.com ([10.8.67.20]) by 0599-its-exbh01.us.saic.com with Microsoft SMTPSVC(6.0.3790.4675); Fri, 22 Jul 2011 07:53:14 -0700
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01CC487F.1551EB48"
Date: Fri, 22 Jul 2011 07:53:14 -0700
Message-Id: <7EDDD87A9A1D7F4DB6F78BC55AA4955002085E1B@0461-its-exmb09.us.saic.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: Why do we need a high assurance API?
Thread-Index: AcxHv4OJVsr//gneRRKX8oANPbLF0gAb/7DiABFAOrAAAqR9cw==
From: "Davidson, John A." <JOHN.A.DAVIDSON@saic.com>
To: cicm@ietf.org
X-OriginalArrivalTime: 22 Jul 2011 14:53:14.0449 (UTC) FILETIME=[156E2C10:01CC487F]
X-Brightmail-Tracker: AAAAAA==
Subject: Re: [cicm] Why do we need a high assurance API?
X-BeenThere: cicm@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: CICM Discussion List <cicm@ietf.org>
List-Id: CICM Discussion List <cicm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cicm>, <mailto:cicm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/cicm>
List-Post: <mailto:cicm@ietf.org>
List-Help: <mailto:cicm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cicm>, <mailto:cicm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Jul 2011 14:53:22 -0000
Hi Jim, I think I am missing your point, or maybe the point of Lev's question?? I agree with you there is little or no standardization, I'm just saying it would be good for the reasons I tried to articulate. Thanks, John ________________________________ From: cicm-bounces@ietf.org <cicm-bounces@ietf.org> To: CICM Discussion List <cicm@ietf.org> Sent: Fri Jul 22 06:40:35 2011 Subject: Re: [cicm] Why do we need a high assurance API? John, I work in the HA world, so my experience in FIPS 140-2 or the commercial field is limited. I believe that there already exist several, perhaps many, Crypto APIs for the FIPS 140-2 and commercial world. Currently in the HA market space there isn’t standardization in how applications/hosts request services from HA products. Jim Cottrell From: cicm-bounces@ietf.org [mailto:cicm-bounces@ietf.org] On Behalf Of Davidson, John A. Sent: Friday, July 22, 2011 1:24 AM To: cicm@ietf.org Subject: Re: [cicm] Why do we need a high assurance API? Hi all, By high “assurance crypto API,” I believe we mean an API for a HA crypto, because I don’t believe a HA API is realistic. So, that leaves me wondering why even include the term HA, maybe we need an API for both HA and non-HA cryptos, I think. The API standardizes the interface between any SDR’s SW and the crypto, any crypto. That enables the potential to swap cryptos (in some cases) without disrupting the SDR SW and vice versa. For example, we can sell a radio to our native country with non-exportable crypto technology and then sell it even to potential adversaries with a different exportable crypto or their own crypto. Or sell our nifty crypto for use in many SDRs and expect it to plug and play in them. My relevant experience: For three decades I have developed and certified high assurance MLS comm. systems, crypto accelerators, MLS operating systems (two achieved “A1” under the old Orange Book) and MLS intel integration systems for common operating picture, published research in COMPUSEC, SE methodology, and SW MODEM design. I’ve worked as an IA engineer for JTRS for the past 6 years. John San Diego, CA ----- Original Message ----- From: cicm-bounces@ietf.org <cicm-bounces@ietf.org> To: CICM Discussion List (cicm@ietf.org) <cicm@ietf.org> Sent: Thu Jul 21 09:01:55 2011 Subject: [cicm] Why do we need a high assurance API? For the benefit of IETF folks who are unfamiliar with this area who will be reading this list during and after the BOF: Why do we need a high assurance crypto API? Please write a brief response that relates to your (or your organization's) experience. Thank you, Lev _______________________________________________ cicm mailing list cicm@ietf.org https://www.ietf.org/mailman/listinfo/cicm
- Re: [cicm] Why do we need a high assurance API? Cottrell Jr., James R.
- Re: [cicm] Why do we need a high assurance API? Davidson, John A.
- [cicm] Why do we need a high assurance API? Novikov, Lev
- Re: [cicm] Why do we need a high assurance API? Otaway Thomas
- Re: [cicm] Why do we need a high assurance API? Davidson, John A.