Re: [cicm] Why do we need a high assurance API?
"Davidson, John A." <JOHN.A.DAVIDSON@saic.com> Fri, 22 July 2011 05:23 UTC
Return-Path: <JOHN.A.DAVIDSON@saic.com>
X-Original-To: cicm@ietfa.amsl.com
Delivered-To: cicm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2EBC421F861E for <cicm@ietfa.amsl.com>; Thu, 21 Jul 2011 22:23:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wwoxkia1a7DC for <cicm@ietfa.amsl.com>; Thu, 21 Jul 2011 22:23:41 -0700 (PDT)
Received: from cpmx2.mail.saic.com (cpmx2.mail.saic.com [139.121.17.172]) by ietfa.amsl.com (Postfix) with ESMTP id 5FB9F21F8639 for <cicm@ietf.org>; Thu, 21 Jul 2011 22:23:41 -0700 (PDT)
Received: from 0599-its-sbg01.saic.com ([139.121.20.253] [139.121.20.253]) by cpmx2.mail.saic.com with ESMTP id BT-MMP-3294808 for cicm@ietf.org; Thu, 21 Jul 2011 22:23:37 -0700
X-AuditID: 8b791438-b7b2cae000000cfb-11-4e290959670e
Received: from 0599-its-exbh01.us.saic.com (cpe-z7-si-srcnat.sw.saic.com [139.121.20.253]) by 0599-its-sbg01.saic.com (Symantec Brightmail Gateway) with SMTP id 0D.AA.03323.959092E4; Thu, 21 Jul 2011 22:23:37 -0700 (PDT)
Received: from 0461-its-exmb09.us.saic.com ([10.8.67.20]) by 0599-its-exbh01.us.saic.com with Microsoft SMTPSVC(6.0.3790.4675); Thu, 21 Jul 2011 22:23:37 -0700
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01CC482F.82715DC8"
Date: Thu, 21 Jul 2011 22:23:37 -0700
Message-Id: <7EDDD87A9A1D7F4DB6F78BC55AA4955002085E1A@0461-its-exmb09.us.saic.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: Why do we need a high assurance API?
Thread-Index: AcxHv4OJVsr//gneRRKX8oANPbLF0gAb/7Di
From: "Davidson, John A." <JOHN.A.DAVIDSON@saic.com>
To: cicm@ietf.org
X-OriginalArrivalTime: 22 Jul 2011 05:23:37.0738 (UTC) FILETIME=[8285EEA0:01CC482F]
X-Brightmail-Tracker: AAAAAA==
Subject: Re: [cicm] Why do we need a high assurance API?
X-BeenThere: cicm@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: CICM Discussion List <cicm@ietf.org>
List-Id: CICM Discussion List <cicm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cicm>, <mailto:cicm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/cicm>
List-Post: <mailto:cicm@ietf.org>
List-Help: <mailto:cicm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cicm>, <mailto:cicm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Jul 2011 05:23:42 -0000
Hi all, By high “assurance crypto API,” I believe we mean an API for a HA crypto, because I don’t believe a HA API is realistic. So, that leaves me wondering why even include the term HA, maybe we need an API for both HA and non-HA cryptos, I think. The API standardizes the interface between any SDR’s SW and the crypto, any crypto. That enables the potential to swap cryptos (in some cases) without disrupting the SDR SW and vice versa. For example, we can sell a radio to our native country with non-exportable crypto technology and then sell it even to potential adversaries with a different exportable crypto or their own crypto. Or sell our nifty crypto for use in many SDRs and expect it to plug and play in them. My relevant experience: For three decades I have developed and certified high assurance MLS comm. systems, crypto accelerators, MLS operating systems (two achieved “A1” under the old Orange Book) and MLS intel integration systems for common operating picture, published research in COMPUSEC, SE methodology, and SW MODEM design. I’ve worked as an IA engineer for JTRS for the past 6 years. John San Diego, CA ----- Original Message ----- From: cicm-bounces@ietf.org <cicm-bounces@ietf.org> To: CICM Discussion List (cicm@ietf.org) <cicm@ietf.org> Sent: Thu Jul 21 09:01:55 2011 Subject: [cicm] Why do we need a high assurance API? For the benefit of IETF folks who are unfamiliar with this area who will be reading this list during and after the BOF: Why do we need a high assurance crypto API? Please write a brief response that relates to your (or your organization's) experience. Thank you, Lev _______________________________________________ cicm mailing list cicm@ietf.org https://www.ietf.org/mailman/listinfo/cicm
- Re: [cicm] Why do we need a high assurance API? Cottrell Jr., James R.
- Re: [cicm] Why do we need a high assurance API? Davidson, John A.
- [cicm] Why do we need a high assurance API? Novikov, Lev
- Re: [cicm] Why do we need a high assurance API? Otaway Thomas
- Re: [cicm] Why do we need a high assurance API? Davidson, John A.