Certification
|
Size: 1535
Comment:
|
Size: 1653
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 16: | Line 16: |
| * [[http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140InProcess.pdf|Strongswan]] review pending, target completion 3Q/4Q17 | * [[http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2017.htm|Strongswan]] validated level 1 31 July 2017 (2978) |
| Line 23: | Line 23: |
| * DISA STIG The STIG is currently going through the QA process with DISA. |
* DISA STIG - Received official notification from DISA that Ubuntu 16.04 STIG has been approved. STIG going through DISA post approval review and will be posted on DISA website when reviews completed. |
Canonical is seeking FIPS and CC certification for 16.04 LTS. We are also working to create DISA STIG and CIS Benchmark rulesets, together with auditing and remediation tooling, for 16.04 LTS.
Canonical is planning to offer Security Certification and Hardening for Ubuntu via a "paid for" Ubuntu Advantage Premium package. As a result, the FIPS and CC enabled packages will not be available in the publicly available Ubuntu archives.
For further information, please contact a member of the Canonical Inside Sales team at inside-sales@lists.canonical.com.
Security certifications for Ubuntu 16.04
- FIPS 140-2
OpenSSH validated level 1 May 2017 (Server: 2906, Client: 2907)
OpenSSL validated level 1 April 2017 (2888)
Kernel Crypto API validated level 1 July 2017 (2926)
Strongswan validated level 1 31 July 2017 (2978)
- Common Criteria (EAL2)
- Current Status - in progress
Final location for the FIPS and CC enabled packages - tbd
Official hardening guides
- DISA STIG - Received official notification from DISA that Ubuntu 16.04 STIG has been approved. STIG going through DISA post approval review and will be posted on DISA website when reviews completed.
CIS Benchmark available for 14.04 and 16.04
Security/Certification (last edited 2017-12-13 15:38:55 by emilyr)