Solved

Windows 2000 "Orange Book" grading

Posted on 2004-09-10
2
308 Views
Last Modified: 2013-12-04
Hi

I would like to know if you know of a document where Windows 2000 security has been graded against the "Orange Book".

If not, does Microsoft provide the following sort of documentation with Windows 2000:

1. Security Features User's Guide
2. Trusted Facility Manual
3. Test Documentation
4. Design Documentation


Is their any other grading mechanism apart from the Orange Book, that I can use to grade Windows 2000.

Thanks

Zaid
0
Comment
Question by:zaidmo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 7

Accepted Solution

by:
jimwasson earned 135 total points
ID: 12033247
It has been given the equivalent of a C-2 rating under the now obsolete Orange Book rating system. The new system is called the "Common Criteria".

A good discussion of it is given here:

http://www.windowsecurity.com/articles/Windows-Common-Criteria-Certification-Part-I.html

http://www.microsoft.com/technet/security/prodtech/win2000/secureev.mspx

http://niap.nist.gov/cc-scheme/st/ST_VID4002.html

http://www.microsoft.com/windows2000/server/evaluation/news/bulletins/win2kcomcrit.asp

Information about the "old" certification is given here:

http://www.microsoft.com/presspass/press/1999/Dec99/GovernmentPR.asp

0
 

Author Comment

by:zaidmo
ID: 12042893
Thanks

- Helped a great deal
0

Featured Post

Ready to trade in that old firewall?

Whether you need to trade-up to a shiny new Firebox or just ready to upgrade from whatever appliance you're using now, WatchGuard has the right appliance for you! Find your perfect Firebox today with appliance sizing tool!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
Article by: btan
The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question