Portal de Periódicos da CAPES

The audit of NetWare 3.xx

1997; Elsevier BV; Volume: 1997; Issue: 1 Linguagem: Inglês

10.1016/s0960-2593(97)89669-3

1879-0798

Chris Nelms,

Smart Grid Security and Resilience

The proliferation of DOS workstations and the subsequent increase in the use of LANs have posed unique threats to the security of information stored, processed, and communicated on and between computer systems. The demand for secure systems, fed by the enhanced system technology has out-paced efforts to provide reasonable and adequate security technology. Concerted efforts to provide a proper level of security to existing and new systems is underway, but the lack of standards for LAN security, network protocols, and network architectures have hampered development efforts. The requirements for C2 security, defined by the NCSC and NIST, most closely approximate an industry standard for computer security and parallel international E2/F2 standard. The real dilemma is then, ‘How does a standalone computer differ from a LAN when applying the C2 evaluation criteria?’ The answer appears to be how the rules for the TCB are extended to include the workstation and its capabilities and vulnerabilities.Interpretations of the rules for C2 are needed now to include DOS workstations and connectionless protocol LANs as well as other technologies. The requirements for C2 security are not new, but the demand for a C2 NetWareproduct are, especially since the Computer Security Act of 1987 made protecting sensitive information the law. Novell, with the assistance of Cordant mc, is pursuing a C2 solution, offering its baseline NetWare 4.0 product with its inherent security features as the starting point. It is the intent of Novell to both listen to its customers and users and be the leader in developing this technology for its installed and future base of NetWare users.