UK Government Security Classification Scheme

After nearly two years of planning, the new UK Government Security Classification system comes into operation this month. This will probably be accompanied by some articles from the doomsday brigade suggesting forecasting chaos and uncertainty; there are undoubtedly rough edges, but it’s important not to lose sight of the bigger cultural change at play…

Continue reading “UK Government Security Classification Scheme” →

Securing the Guard

I have talked previously about the challenge of building a File Guard, and the approach we took to designing it.
Continue reading “Securing the Guard” →

RedHat Case Study – Nexor Sentinel

Those nice people at RedHat have written a Case Study on the Nexor Sentinel Product…

Continue reading “RedHat Case Study – Nexor Sentinel” →

SE Linux for Android

One of the challenges with a general purpose operating system, it that it is general purpose! It is designed to provide the application developer with a tool set to build their application. When building an application used to enforce security, this is a real challenge.

Continue reading “SE Linux for Android” →

Can you trust a $1612 Data Diode?

The Data Diode technical model to achieve a one way network connection is relatively simple. However when you start to consider trust and assurance, it gets more complex.

Continue reading “Can you trust a $1612 Data Diode?” →

Evolution of Common Criteria

Nexor have received Common Criteria certification for our Sentinel Product, as required by our customers. Common Criteria is a scheme that is both much criticised and undergoing evolution.

Continue reading “Evolution of Common Criteria” →

Common Criteria Certification for Nexor Sentinel

Nexor has announced the Common Criteria Certification, to EAL4 of Nexor Sentinel – a high assurance, e-mail guard.

In the announcement I am quoted as saying:
Continue reading “Common Criteria Certification for Nexor Sentinel” →