There were two or three guys active in SHARE that had the CAD(Cloak and dagger) site code. One of their jobs was to evaluate operating systems for 'security'. IIRC only MULTICS was higher than MVS. The evaluations were published, maybe it was a green book. Then on last page "if it's connected to a network these evaluations are null and void." Then they moved to a different standard altogether but kept the basics intact. In a message dated 12/3/2017 11:25:40 AM Central Standard Time, [email protected] writes:
https://en.wikipedia.org/wiki/Trusted_Computer_System_Evaluation_Criteria#B_–_Mandatory_protection ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
