TCSからCDS（CrossDomainSolution）についてのプレスリリース

Trusted Computer Solutions’ Cross Domain Linux Product Now Part of Accredited System at U.S. Coast Guard
http://www.tcs-sec.com/news/6news6_1_2j.htm

「U.S. Coast Guard（U.S.C.G）」とは米国沿岸警備隊のこと
http://ja.wikipedia.org/wiki/%E3%82%A2%E3%83%A1%E3%83%AA%E3%82%AB%E6%B2%BF%E5%B2%B8%E8%AD%A6%E5%82%99%E9%9A%8A

Trusted LinuxをベースにしたNetTop2が導入されているようだ

Trusted Computer Solutions, Inc. (TCS), a leading supplier of Cross Domain Solutions for government and industry,
announced today that the company’s new,
trusted Linux-based, SecureOffice(R) NetTop(R)2 - Thin Client(R) product is now operational in a system as part of the Coast Guard Intelligence Program (CGIP).

U.S.C.G. Intelligence Program Implements NetTop2 
Thin Client to Provide Access to JWICS and SIPRNET from a Single Desktop

JWICS （Joint Worldwide Intelligence. Communications System）とは世界諜報通信システムのこと

SIPRNET（Secret Internet Protocol Router Network）とは国防総省の機密扱いのネットワークのこと

SIPRNETにはLenovo社から調達したPCの接続を許可しなかったニュースもあった
http://www.gcn.com/online/vol1_no1/40811-1.html

SIPRNETの逆はNIPRNet（Non-secure Internet Protocol Router Network）

NetTopを使用して1台のデスクトップから最高機密のJWICSとSIPRNETへのアクセスを提供するようだ。

The system was granted an Authority to Operate (ATO) by the Accrediting Authority for the Joint Worldwide Intelligence Communications System (JWICS).
This newly accredited system provides access to the top secret JWICS network and the Secret Internet Protocol Router Network (SIPRNET) network from a single desktop.

いままではTrusted SolarisかSTOP/XTS400だけが公認のプラットフォームだったのが、Linuxでも提供できるようになった。

This implementation represents a significant step forward in providing government agencies with the ability to deploy low-cost,low-maintenance Linux platforms as the basis of a new generation of Cross Domain Solutions.
Prior to the Coast Guard ATO, the most often accredited platforms for cross-domain solutions were typically Sun’s Trusted Solaris 8 or the STOP/XTS 400 operating system from BAE.
Both of these operating systems are UNIX based and traditionally more expensive and more difficult to administer than the newer Linux-based Intel platforms.

STOP XTS-400のSTあった。
Security Target for STOP XTS-400 6.0.E
http://www.commoncriteriaportal.org/public/files/epfiles/ST_VID3012-ST.pdf

certification reportも
http://www.commoncriteriaportal.org/public/files/epfiles/ST_VID3012-VR.pdf

STOPとはSecure Trusted Operating Programのこと

XTS-400/STOP 6.0.EはEAL4+で、XTS-400/STOP 6.1.EはEAL5+のようだ。

STOP XTS-400 6.1.EのST
http://www.commoncriteriaportal.org/public/files/epfiles/ST_VID3012a-ST.pdf

certification reportも
http://www.commoncriteriaportal.org/public/files/epfiles/ST_VID3012a-VR.pdf

IBMからのメッセージ↓

“IBM is pleased to partner with TCS on the first Linux Cross Domain accredited system at the U.S. Coast Guard,”
said Anne Altman, IBM's managing director of U.S. Federal.

“IBM is investing heavily in the Cross Domain Linux solution area.
This is the latest in a series of firsts that IBM has been able to contribute to the Linux Community.

CCの評価も狙う

In addition, IBM servers are the first official Targeted Operating Environment for the Common Criteria Evaluation and Validation Scheme （CCEVS）currently underway.
Through our partnership with TCS, IBM can now assure future buyers that its platforms can be accredited for operational cross-domain solutions."

NetTop2について

NetTop2  Thin Client provides users with the ability to access multiple independent sessions at different classification or sensitivity levels.
Each level is securely separated from others by the operating system layer, which enforces a strong protection security policy that prevents cross-domain contamination.
Using a single, low cost desktop appliance, users can access and operate at multiple disparate classification levels based, in part, on National Security Agency (NSA) developed security mechanisms and policies protecting the session at the operating system level.

TCSのCOOからのメッセージ

Unique to the NetTop2 
Thin Client solution is network separation provided by a centralized distribution console running a trusted Linux operating system.
“The Government now has a real choice of platforms upon which to deploy accreditable Cross Domain solutions,”
said Ed Hammersla, chief operating officer for TCS.
“When properly implemented and accredited, these systems can help prevent terrorist attacks and make our citizens more secure, by facilitating greater levels of information sharing than ever before possible.”