> On Thu, 2008-03-06 at 17:09 -0600, Brian Cameron wrote:
> > However, it is unclear
> > to me whether Trusted Path applies to non-Trusted environments
>
> IMHO it is valid concept in any multi-user environment. Not clear we
> have hard requirements for it outside Trusted but if we don't it's only
> because our customers aren't paranoid enough...
On the other thread that got hijacked into a gnone-screensaver
discussion, What other PAM modules should we include in core
OpenSolaris, at From gww Thu Mar 6 11:07:32 2008 I quoted
the requirements for Trusted Path for ALL evaluations of Solaris
that will be coming soon. It's not a TX only issue. See section
5.9 of
http://niap.bahialab.com/cc-scheme/pp/pp.cfm/id/pp_os_sl_mr2.0_v1.91/
This (or it's more strict successor) will be the criteria against
which Solaris (with or without TX) is evaluated.
I'm working on a Gap analysis. When it's completed, it will
be forwarded to Management for planning, staffing, .....
Until then I'm not replying publically to any further points
in either of these threads.
Gary..
