Windows XP Gets Security Certification - Techist - Tech Forum

Go Back   Techist - Tech Forum > Computer Software > Microsoft Windows and Software
Click Here to Login
Closed Thread
 
Thread Tools Display Modes
 
Old 12-15-2005, 07:19 PM   #1 (permalink)
Techie Beyond Description
 
Osiris's Avatar
 
Join Date: Jan 2005
Location: Kentucky
Posts: 36,817
Send a message via ICQ to Osiris Send a message via AIM to Osiris Send a message via MSN to Osiris Send a message via Yahoo to Osiris
Default Windows XP Gets Security Certification

Touting the success of it's new Security Development Lifecycle (SDL) process, Microsoft late Wednesday said Windows Server 2003 and Windows XP SP2 Professional and Embedded have secured the highest Common Criteria security certification from the United States government's National Information Assurance Partnership.

Four versions of Windows Server 2003 were certified, including Standard Edition, Enterprise Edition, Datacenter Edition and Windows Server 2003 Certificate Server. Both Windows 2000 Professional and Server editions previously achieved the same security rating, dubbed Evaluation Assurance Level (EAL) 4.


To obtain the certification, which is handled by Science Applications International Corp. (SAIC), the six operating systems were put through 20 real-world scenarios, or "workloads." The Common Criteria testing was ratified as an international standard in 1999.

"CC certification of these Windows platform products, which includes evaluation of the broadest set of real-world scenarios of any operating system platform today, underscores our deep and ongoing commitment to the Common Criteria process," said Steve Lipner, senior director of security engineering strategy at Microsoft.

Lipner said SDL played a critical role in helping to achieve the certification. SDL is Microsoft's new approach to software development, in which it carefully reviews all code for security risks and takes into account the best practices it learned after undertaking an extensive security review in 2002.

Microsoft says its newly released development products, Visual Studio 2005 and SQL Server 2005, have undergone the SDL process from beginning to end. In the process, the company also developed two security debugging tools known as PREfast and FxCop.

"This milestone complements our ongoing advances in software quality through the Security Development Lifecycle process, ultimately benefiting any IT organization that is serious about security," Lipner added.
__________________

__________________
Osiris is offline  
Old 12-15-2005, 09:43 PM   #2 (permalink)
Master Techie
 
Join Date: Oct 2003
Posts: 2,258
Default

Hey, I work for that Company (SAIC)!...

Woohoo....
__________________

Inaris is offline  
Old 12-15-2005, 09:44 PM   #3 (permalink)
Techie Beyond Description
 
Osiris's Avatar
 
Join Date: Jan 2005
Location: Kentucky
Posts: 36,817
Send a message via ICQ to Osiris Send a message via AIM to Osiris Send a message via MSN to Osiris Send a message via Yahoo to Osiris
Default

Did you take part in that?
__________________
Osiris is offline  
Old 12-15-2005, 11:06 PM   #4 (permalink)
Master Techie
 
Join Date: Oct 2003
Posts: 2,258
Default

No. We are global. Mostly military contracts and such. I'm in commercial business.
The military group that does R&D probably did it...
Inaris is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off




Copyright 2002- Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 02:29 PM.


Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.