[...]]]>
[...] The PIV contactless interface cannot be used for certificate operations. It's only for physical access control use as a proximity card. -- Tim Attachment: smime.p7s Description: S/MIME Cryptographic Signature]]>
Hey Keith, Look at some of the things that are clearly possible, for example with magstripes: <http://www.appleinsider.com/articles/09/11/03/exclusive_look_at_apples_new_ipod_touch_based_easypay_checkout.html [...] Of course, this could be a contact Smart Card reader, or any number of [...]]]>
Let me go on the record as saying that if 4G iPhones support contactless RFID, I'll be in line to replace my 3GS the day they go on sale (worthy of carrier penalty). http://www.appleinsider.com/articles/09/11/05/report_apple_testing_rfid_ swipe_support_in_iphone_prototypes. [...]]]>
It was in the PDF attached on my post but I forogt we can't drop attachments so soon as i get to my mac I'll send stright to you. Mike Sent from my iPhone On Nov 5, 2009, at 8:57, Ian Thompson <email@hidden> wrote: I'd like the name of this guy please. [...]]]>
I'd like the name of this guy please. Ian Thompson, Apple 703-216-4447 Cell phone On Nov 4, 2009, at 9:09 PM, email@hidden wrote: Send Fed-talk mailing list submissions to email@hidden To subscribe or unsubscribe via the World Wide Web, visit http://lists.apple. [...]]]>
To check to see of ANY company does business legitimately just go to www.ccr.gov and do a search for them. I did a CCR search and attached a pdf of the results just to show the kind of info that you can get even without a CCR account (which I have). [...]]]>
I thank all of you for your support. I will start with the stickers first. I will lay low until after I submit my PAA in NSPS-yuk- then I will make my move. Thank you again for your support. I really appreciate it. raymond I charge though. J On Mon, Nov 2, 2009 at 11:23 AM, Wolfe, Barbara (Civ,ARL/SLAD) <email@hidden> wrote: Classification: UNCLASSIFIED Caveats: NONE Accept Joel's offer. Attachment: smime.p7s Description: S/MIME cryptographic signature]]>
[...]]]>
[...] Simple answer: because the pkcs11 implementation already exists. It has been known to work on Solaris, and Linux. I've used it on a Mac, though only with Firefox. ------------------------------------------------------ The opinions expressed in this message are mine, [...]]]>
Comments, corrections, additions welcome. Fed-Talk mailing list Frequently Asked Questions Emailed monthly to fed-talk ---at--- lists.apple.com. Last update: October 6, 2009. Contents: ========== See the footer in every Fed-Talk message. See also http://lists.apple. [...]]]>
I just wanted to second what Shawn said here. The final draft of the DoD Secure Baseline Configuration (SDC) settings for Mac OS X 10.5 Leopard is done. It is now going through the approval process. It has to be signed by the DOD CIO before it officially becomes the SDC settings for the DoD. [...]]]>
-------- Forwarded Message --------
From: Shawn A. Geddis <email@hidden>
To: Allan Marcus <email@hidden>
Cc: Apple Fed Talk <email@hidden>
Subject: Re: [Fed-Talk] FIPS SSL
Date: Fri, 30 Oct 2009 20:52:24 -0700
Allan,
[...]]]>[...] I tried this last week and was able to get it to work. I already had MacPorts and X11 installed; the command to install rdesktop with smart card support was: $ sudo port install rdesktop +smartcard Once it was installed, the command to run it was: rdesktop -r scard -g 1024x768 my.server. [...]]]>
Classification: UNCLASSIFIED Caveats: NONE Accept Joel's offer. If the non-believers watch TV, they'd see the many TV programs whose characters use Macs. If they're good enough for well paid actors, they're good enough for us! My husband disliked Mac's till our PC blow-up as a result of a virus. [...]]]>
Shawn, Thanks so much for your comments. It's so good to hear from Apple on this topic. With regards to SDC and FDCC, what is the process? Will there be a opportunity for public comment, or will new rules just be handed down? I've tried to get in touch with people at NISt and NSA, but I've had no luck. My Apple reps basically punt to you, so if you could either shed some light on this process, or point me to someone I can talk, I would greatly appreciate it. With regards to OpenSSL and the use of Macs in federal government, I should qualify that statement I made. Given the NIST 800-88 requirement that FIPS 140-2 be used "for information requiring cryptographic protection," and given the we need to encrypt anything sensitive (or at least we do in the DOE, I just assume the other agencies need to as well), and given that so much relies on OpenSSL (ssh, Apache, Apple Report Desktop, AFP -- I think, scp, sftp), it would be hard to avoid using any of those technologies and have the Mac be useful. Let's take a look at the competition: Microsoft Window 7/Vista: ships with FIPS certified services Red Hat Enterprise Linux: Ships with the FIPS module of OpenSSL pre- compiled and easily installed as an RPM. I can understand that Apple is working on getting it Crypto module certified (although why it's taking so long is a true mystery). What I don't understand is why Apple does make the FIPS option for OpenSSL a support and easily installable option. --- Thanks, Allan Marcus 505-667-5666 On Oct 30, 2009, at 9:52 PM, Shawn A. Geddis wrote: On Oct 30, 2009, at 1:08 PM, Allan Marcus wrote: [...] Yes, after your second read you were closer to the actual statements I made in the message. :-) I was indeed stating that Apache in Mac OS X is not using a version of OpenSSL that is utilizing a FIPS validated crypto module, but that if Mark wanted to attempt to achieve compliance and use the same Apache, he could try to wedge a FIPS validated version of OpenSSL. I do, however, feel the need to challenge your comments above..... [...] Your reference to default and then to SSL/SSH seems it could possibly confuse some on this list, so I'd like to break it out and clarify.... Mac OS X's built-in Cryptographic Service Provider (CSP) Software Module is currently in process for FIPS 140-2 Level 1 Conformance Validation. OpenSSL on Mac OS X 10.5/10.6 is not compiled using their FIPS validated crypto module OpenSSH uses the installed OpenSSL on the platform (see above) Apache on Mac OS X uses OpenSSL (see above) [...] I'm not sure how you can make such a jump here. The above situation regarding Apache/OpenSSL/OpenSSH has no impact in when or how you will see an FDCC for Mac. In fact you, the SDC will be first, followed by the FDCC. The work one this has wound down, but it must still travel through the formal sign-off process. [...]]]>
Never be afraid of using a Mac. Â Let the Haters hate. Â When you see someone using a non-mac just think "well, that sucks to be you!". Sounds like you need more ammo to de-hate your co-workers. Â I'll come visit you, put them all in their place and leave. Â You'll never have a problem again ; [...]]]>