Reply to post: Re: Physical access beats all

Sysadmin cracked military PC’s security by reading the manual

Yet Another Anonymous coward Silver badge

Re: Physical access beats all

"Physical access beats all"

Orange book security standards allowed you assume physical security

Windows NT claimed to meet C2 level security, except for the network susbsystem.

So the machine was perfectly secure, so long as it wasn't networked and you could control physical access !

Not actually that silly, C2 required you to log certain actions in a secure manner. One other manufacturer we tested did log these events, but provided no way of viewing them. The Orange book just said they had to be logged, it didn't mention retrieval.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon


Biting the hand that feeds IT © 1998–2020