Article 876 at 08/09/03 09:53:51 From: sghosh@redhat.com Subject: [users:00876] Re: Question about DoD tests

Index: [Article Count Order] [Thread]
Date: Tue, 02 Sep 2008 20:52:46 -0400
From: Subhendu Ghosh <sghosh@redhat.com>
Subject: [users:00876] Re: Question about DoD tests
To: users@tahi.org
Message-Id: <48BDDFDE.9020606@redhat.com>
In-Reply-To: <20080703090757.GA20908@pingi.kke.suse.de>
References: <E230C7241C9FCF45951E65304AEAB1ECE2866AE8@GVW1103EXC.americas.hpqcorp.net> <20080703090757.GA20908@pingi.kke.suse.de>
X-Mail-Count: 00876

Karsten Keil wrote:
> On Thu, Jul 03, 2008 at 06:52:04AM +0000, S, Sreenath wrote:
>> Hi All -
>>   I know that this forum caters to TAHI and the IPv6Ready Logo specification. However, I wanted to get
>> some information from folks that do both the IPv6 logo as well as the US Department of Defense certification
>> and hence this mail.
>>
>>   I recently found out that the DoD publishes the generic test plan it uses to test conformance of IPv6 RFCs.
>> You can look at the current document here: http://jitc.fhu.disa.mil/adv_ip/register/docs/dodipv6gpv3_aug07.pdf
>>
>>   The tests listed in DoD's generic test plan seems less rigorous than the test plan for IPv6Ready logo published
>> by UNH. For example, for RFC 4443 the DoD's test plan checks for ICMPv6 informational messages only in
>> 6 different cases but I find that TAHI does a much better coverage of 4443 with informational and error messages
>> in different conditions.
>>
> 
> That is true only for interoperability test. All the detailed descriptions
> in the test plan are only for the interoperability test, here are no detailed
> informations about the conformance tests, only that they maybe be done with Ixia 
> IxANVL Test Suite IPv6 Core tests or similar (e.g. in C.1.14 RFC 4443). From
> the information on the Ixia side I think they have more tests as the TAHI
> suites.

DoD testing for conformance is designed for the network equipment. For the OS 
testing this primarily based on vendor certification about conformance and DoD 
testing for interoperability.

> 
> 
>>   I know that DoD does RFC conformance, interoperability and performance testing and the following relates only to
>> the conformance testing part of it. My question to people doing both certifications is:
>> 1. Would I be correct in assuming that SelfTest 4.x.x is a superset of the DoD's tests?
>> 2. If so, when my device passes all the tests in SelfTest 4.x.x, can I assume that the device will also pass the conformance
>>     testing done by DoD?
>>
> 
> For the interoperability test cases yes.
> 

Note: DoD host interoperability testing include the application layer which 
TAHI does not cover.  SMTP, HTTP, FTP, SNMP, DHCP, etc.

Also for IPsec, DoD is looking forward to some of the RFC and drafts regarding 
cipher suites. These are not yet covered in TAHI as they have not reached 
standards status.


-regards
Subhendu