19Jan2008 (UTC +8) On 1/19/08, Orlando Andico <[EMAIL PROTECTED]> wrote: > provable as in state machine? hmmm is even the hardware provable?
Not absolutely, but yeah, you can do that to a good extent... but I think the better term is "trustworthiness". I'm into Common Criteria* though, also known as ISO/IEC 15408. *USA's old Orange Book and Europe's ITSEC, now rolled into one. I don't know any university courses that does this... contributed some stuff when I was with Check Point Software for the VPN-1/Firewall-1 Version 4.1 SP2 (which got awarded E3-level back then), and that took a lot of documentation! It was a self-study for me, with learning experiences from other software engineers but mostly technical writers. > On Jan 19, 2008 8:05 PM, Drexx Laggui [personal] <[EMAIL PROTECTED]> wrote: > > On 1/19/08, Rogelio Serrano <[EMAIL PROTECTED]> wrote: > > > Anybody aware of any effort to do that? > > > What university courses are required to be able to do this? > > > > What exactly is "provable security" ? Drexx Laggui -- CISA, CISSP, CFE Associate, ISO27001 LA-C, CCSI, CSA http://www.laggui.com ( Singapore / Manila / California ) Computer forensics; Penetration testing; QMS & ISMS developers; K-Transfer PGP fingerprint = 6E62 A089 E3EA 1B93 BFB4 8363 FFEC 3976 FF31 8A4E _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
