ISO 9000-3 Digest Thursday, 21 November 1996 Volume 01 : Number 026
In this issue:
Re[2]: Mike Tingey's "Comp ISO Baldridg & CMM" at CLBooks
Diskette Write Protection
Non-member submission from [Bob Marshall ] (fwd)
Bob Marshall's Question on Data Protection
[none]
[none]
FAQ?
Re: FAQ?
RE: FAQ?
The Quality Forum Events Calendar (fwd)
re: New Email List: COM-CRI@info-sec.org
DC AREA JOB POSTING> Not really Quality-related, but....(fwd)
[none]
----------------------------------------------------------------------
From:
Date: Tue, 08 Oct 1996 13:03 -0500 (EST)
Subject: Re[2]: Mike Tingey's "Comp ISO Baldridg & CMM" at CLBooks
ISO Folks ---
Received assurance on availability of Tingey's book comparibg ISO
Baldrige and CMM from the Computer Literacy Books CEO ....
Contrary to her modesty on their service, I've found CL Books very
quality conscious and worthy of continued support - and they do have a
seven-day return policy.
-- Mike Berens
______________________________ Reply Separator _________________________________
Subject: Re: "Comp ISO Baldridg & CMM"
Author: rachel@clbooks.com at ORL-SMTP-G
Date: 10/8/96 5:22 AM
Hello--
As of Friday, the book was in stock at the Tysons Corner store. We have
still not yet received it on the West Coast. There is usually a lag time
between the time the publisher tells the author that the book is "ready"
and the time it arrives at bookstores. The books are printed, then sent to
the bindery, then from the bindery to the publisher's warehouse, then on to
the bookstores. The delays can run weeks sometimes, depending upon the
publisher. There is also shipping time and processing time at the
bookstore. Sorry for the delay.
If you check now, it should be there. I notice that our web page is not
up-to-date on the stock information for that title. We seem to be having
problems with the program that updates the web page. I guess we will not
win the Baldridge award ;-)
Rachel Unkefer
CEO
> This title is published by Prentice Hall Professional Technical
> Reference
>
>----------------------------------------------------------------------------
>
>Summary:
>For some companies, ISO 9000 and SEI CMM have become a mandatory requirement
>for doing business with other companies and governments. For other
>companies, the need for quality improvement has been recognized as an
>important element of long term survival. This book compares three quality
>management system assessment methodologies, the Malcolm Baldrige National
>Quality Award, which was created by Public Law in 1987 to promote the
>improvement of quality in the US; the International Organization for
>standardization ISO 9000, a set of quality standards whose purpose is to
>standardize quality systems, implemented by organizations; and the Software
>Engineering Institute (SEI) Capability Maturity Model (CMM) for Software, a
>federally funded research and development center operated by Carnegie Mellon
>Univ. under contract and sponsorship by the US Dept. of Defense.
>
- ----------------------------------------------------------------------
Rachel Unkefer (rachel@clbooks.com) | Phone orders: (408) 435-0744
Computer Literacy Bookshops, Inc. | Fax orders: (408) 435-1823
(804) 975-0785 Fax (804) 975-0790 | Inquiries: info@clbooks.com
http://www.clbooks.com
------------------------------
From: Bob Marshall
Date: Tue, 15 Oct 1996 13:28:18 EDT
Subject: Diskette Write Protection
Colleagues:
As part of our control of software used in process or
inspection/measurement/test equipment, we have a QA-controlled
validation/calibration test of that software, and then place
a QA write-protection seal on the diskette, to ensure it's
integrity. On 3.5" diskettes, it is difficult to implement a
tamper-proof method of 'sealing' the write-protection. Until
recently, the number of diskettes was quite small, so the
diskettes were kept in QA-sealed bags, and only opened in the
presence of QA personnel. However, quantities have now risen
to the point where this approach is no longer practical or
efficient. Does anyone have any experience with a simple and
effective method of securely write-protecting 3.5" diskettes?
Bob Marshall
Litton Systems Canada Ltd.
tel: 416-249-1231 x2303
fax: 416-246-2016
E-m: marshall@littonlsl.com
------------------------------
From: "Bill Casti, CQA (Moderator)"
Date: Tue, 15 Oct 1996 19:27:38 -0400 (EDT)
Subject: Non-member submission from [Bob Marshall ] (fwd)
NOTE: Respond *only* to the poster's address (see below) or as
directed in the posting, NOT to the list address and definitely NOT to me.
Thanks.
Bill
- ---------- Forwarded message ----------
Date: Tue, 15 Oct 1996 13:26:36 -0400
To: iso9000-3@quality.org
From: Bob Marshall
Subject: Diskette Write Protection
Colleagues:
As part of our control of software used in process or
inspection/measurement/test equipment, we have a QA-controlled
validation/calibration test of that software, and then place
a QA write-protection seal on the diskette, to ensure it's
integrity. On 3.5" diskettes, it is difficult to implement a
tamper-proof method of 'sealing' the write-protection. Until
recently, the number of diskettes was quite small, so the
diskettes were kept in QA-sealed bags, and only opened in the
presence of QA personnel. However, quantities have now risen
to the point where this approach is no longer practical or
efficient. Does anyone have any experience with a simple and
effective method of securely write-protecting 3.5" diskettes?
Bob Marshall
Litton Systems Canada Ltd.
tel: 416-249-1231 x2303
fax: 416-246-2016
E-m: marshall@littonlsl.com
------------------------------
From:
Date: Fri, 18 Oct 1996 18:06 -0500 (EST)
Subject: Bob Marshall's Question on Data Protection
Most physical privacy/integrity protection techniques are not
cost effective. Suggest using a logical technique such as
available through any of the following:
PKWare -- Makers of PKZip
TO: FROM:
PKWARE, Inc. Name:
__________________________________
9025 N. Deerwood Dr.
Brown Deer, WI 53223-2437 (Company):
__________________________________
414-354-8699 Voice Address: __________________________________
414-354-8559 FAX
414-354-8670 BBS City: __________________________________
******************************************************************
------------------------------------------------------------------
Arc -- Makers of the ARJ Compression & Security Enveloper
---------------------------------------------------------
ARJ AVAILABILITY:
The latest version of ARJ can be obtained from the following
sources:
ARJ SUPPORT BBSes: See ARJ_BBS.DOC
ARJ is available from a number of other BBSes, but I can only vouch
for the integrity of the archive if the ARJ###.EXE verifies its
ARJ-SECURITY envelope as valid. If no security envelope exists,
then the data has been re-archived and there is no assurance of data
integrity.
If none of the above sources are suitable, you may order a copy of
the latest version of ARJ directly from the author.
Send a check or money order for five dollars (US) to cover the
costs of shipping and handling for U.S. delivery. For foreign
delivery, send ten dollars (US) to cover shipping and handling.
Please specify diskette size (3.5 or 5.25 inch); otherwise, a 3.5
inch diskette will be shipped. Please allow a few weeks for
delivery, longer for foreign deliveries.
Robert and Susan Jung CompuServe: 72077,445
ARJ Software Internet: robjung@world.std.com
Robert Jung at Bay State BBS (617) 598-6646
------------------------------
From: "Richard Perucchi"
Date: Wed, 23 Oct 96 15:49:08 UT
Subject: [none]
subscribe iso9000-3-digest
------------------------------
From: "Richard Perucchi"
Date: Wed, 23 Oct 96 15:49:34 UT
Subject: [none]
subscribe iso9000-3
------------------------------
From: John Botham
Date: Thu, 7 Nov 1996 17:33:41 -0000
Subject: FAQ?
Hi everyone,
I've been on the list for a number of months now, but have never seen any
reference to a FAQ. Is there one?
I used to receive the digest, but just resubscribed in order to get
mailings as they're sent out. I imagine I'll have missed a few mailings
doing this, so please don't flame me if a FAQ appeared recently.
Thanks,
John B (J.Botham@tarragon-et.co.uk)
------------------------------
From: pstein@measurement.com (Philip Stein)
Date: Fri, 8 Nov 1996 08:44:41 -0500 (EST)
Subject: Re: FAQ?
At 5:33 PM 11/7/96, John Botham wrote:
>Hi everyone,
>
>I've been on the list for a number of months now, but have never seen any
>reference to a FAQ. Is there one?
>
>I used to receive the digest, but just resubscribed in order to get
>mailings as they're sent out. I imagine I'll have missed a few mailings
>doing this, so please don't flame me if a FAQ appeared recently.
>
>Thanks,
>John B (J.Botham@tarragon-et.co.uk)
There is no FAQ except for the subscription information you should have
received when you signed up.
There is also no formal list manager - I'm doing what little gets done.
Philip Stein O-
Consultants in the Physical Science, Measurements, and Quality
Chair, ASQC Measurement Quality Division
check out http://www.ataindy.com
------------------------------
From: John Botham
Date: Fri, 8 Nov 1996 14:35:43 -0000
Subject: RE: FAQ?
In reply to my earlier message, Philip Stein wrote:
>There is no FAQ except for the subscription information you should have
>received when you signed up.
>
>Philip Stein
Thanks, Philip. I feel I can safely go ahead and ask a question now...
I've recently been looking at Section 6.7, "Purchasing". In Section 6.7.1,
the standard says (a) that the "supplier should ensure that a purchased
product ... conforms to specified requirements" and (b) (in Note 7) that a
"purchased product may be ... a tool intended to assist in the development
of the required product." I read this to mean that one should have written
requirements for major pieces of software like configuration management
tools, and should evaluate potential purchases against them. I wonder,
though, to what extent one should take such evaluations (a) for the good of
the delivered product and (b) to satisfy auditors. For instance, we use
UNIX's cp utility in the process of make releases. Need we, therefore,
evaluate cp against a set of written requirements? If so, how would we do
so without trusting some other utility?
In the context of third-party tools (which won't find their way into the
finished product), does the rest of Section 6.7 mean the "vendor" when it
talks about the "sub-contractor"?
Thanks,
John B (J.Botham@tarragon-et.co.uk)
------------------------------
From: "Bill Casti, CQA (Moderator)"
Date: Fri, 8 Nov 1996 21:46:29 -0500 (EST)
Subject: The Quality Forum Events Calendar (fwd)
NOTE 1: This notice is being sent to multiple QUALITY.ORG and other=20
addresses. You may receive duplicates. My apology for that, but it's=20
unavoidable. Please delete the duplicate messages you might receive.=20
Bellyaching to me will not change the process. :)
NOTE 2: Respond *only* as directed in the posting below, NOT to me.=20
Thanks.
Bill
- ---------- Forwarded message ----------
Date: Sat, 26 Oct 96 11:09:08 CDT
From: Administrator@qof.com
Subject: Events Calendar
For Immediate Release
Contact: John A. Shoemaker
Telephone: 913-379-5590
E-Mail: info@qof.com
Quality Online Forum Events Calendar Now on the Web!
For the past year Quality Online Forum has maintained a database of
quality workshops, seminars and conferences. Each month it continues to
grow. In October, there were more than 180 events listed. We now post the
current month=D5s events on our website at http://www.parod.com/qof/!cal/.
Events through 1999 are available at our online service, Quality Online
Forum, and are fully searchable.=20
Organizations can have their events listed free of charge by sending the
information to us by e-mail at events@qof.com. Please include the following
information:
1. Event
2. Sponsor
3. Phone Number
4. Even Start Date
5. Event End Date
6. Registration Fee
7. Event Location-City
8. Event Location-State
9. Event Location-Country
For additional information about Quality Online Forum check our home page a=
t
http://www.parod.com/qof/ or send an e-mail request to info@qof.com.
- ---------------------- End Forwarded Text -------------------------
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D
Bill Casti, CQA Email: help@quality.or=
g
- Domain Owner, QUALITY.ORG Pager: +1 800 604 6149
- List Moderator, "TQM in Manufacturing and Service Industries"
- Chairman, Electronic Media
ASQC Section 0511 (Northern VA) Section Email: E-media@asqc0511.org
- Senior Internet Systems Administrator, Federal Emergency Management Agen=
cy
- ---------------------------------------------------------------------------=
- ---=20
QUALITY RESOURCES ONLINE at: http://www.quality.org/qc
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D =20
------------------------------
From: "Bill Casti, CQA (Moderator)"
Date: Mon, 11 Nov 1996 19:40:47 -0500 (EST)
Subject: re: New Email List: COM-CRI@info-sec.org
Hello:
I have just begun hosting a new UNMODERATED email discussion list at my
INFO-SEC.ORG domain (for Information Security), dedicated to discussion
related to the "Common Criteria for Information Technology Security
Evaluations". Some of you may be interested in this topic. There is also a
digest version of the list, but digests are only generated when 150K of
messages has accumulated. Following are the instructions to subscribe to
either or both versions of the list:
To subscribe to either/both:
1. Address an email message ONLY to: majordomo@info-sec.org
2. In the BODY of your message, put either or both of the following lines:
subscribe com-cri
subscribe com-cri-digest
3. The Majordomo software will respond by sending you an authentication
code and your "subscribe" line. You must return both BACK to
majordomo@info-sec.org within 24 hours to confirm your subscription. We
do this to validate that YOU are the person subscribing you to the list,
as there have been incidents of malicious persons subscribing
unsuspecting persons to 1,000s of lists. This way YOU have to validate
that you want to subscribe.
If you have questions about subscribing or unsubscribing, please direct
them to me at: help@info-sec.org
Thanks.
Bill
- --------
My apology in advance if you get multiple copies of this message. Please
delete the extras. It happens because you are on more than one of the
list addresses to which this message is being sent. Sorry.
- --------
==============================================================================
Bill Casti, CQA Email: help@quality.org
- Domain Owner, QUALITY.ORG Pager: +1 800 604 6149
- List Moderator, "TQM in Manufacturing and Service Industries"
- Chairman, Electronic Media
ASQC Section 0511 (Northern VA) Section Email: E-media@asqc0511.org
- Senior Internet Systems Administrator, Federal Emergency Management Agency
- ------------------------------------------------------------------------------
Browse my homepage and resume at: http://www.casti.com/casti/Bill.html
- ------------------------------------------------------------------------------
QUALITY RESOURCES ONLINE at: http://www.quality.org/qc
==============================================================================
------------------------------
From: "Bill Casti, CQA (Moderator)"
Date: Thu, 14 Nov 1996 18:36:15 -0500 (EST)
Subject: DC AREA JOB POSTING> Not really Quality-related, but....(fwd)
I was contacted about taking this job, but I'm not really a WebMaster.
You may not be either, but you may know someone who is. The position is
in the Washington DC Metro area.
If interested, contact the headhunter below, as directed.
Thanks.
Bill
- ----------------- Begin Forwarded Message ---------------------
Webmaster (Intranet only): BS in CS or equivalent, knowledge of web
servers on NT/UNIX/AIX, Perl5, unix scripting, CGI, HTML, JavaScript, C++,
strong graphics art skills, in depth unix, TCP/IP knowledge, strong
communications & analysis skills. Must be creative, artistic, but
technically competant. Will be responsible for the installation and
maintenance of unix and NT-based webservers, understand & develop
website's mission, understand the principles of good web design, promote
website usage, and assess strengths & weaknesses. This position reports to
the Web Development Team Leader.
This is the exact description that our client sent to us. If anyone you
know is interested, please have them respond to me:
Jennifer Thompson
Recruiter
American Technical Resources (ATR)
phone: 703-917-7800 or 800-266-4473
fax: 703-917-1616
e-mail: jlt@atr.com
- ---------------------- End Forwarded Message ---------------------------
============= Presented as a Service of ASQC Section 0511 ===============
==============================================================================
Bill Casti, CQA Email: help@quality.org
- Domain Owner, QUALITY.ORG Pager: +1 800 604 6149
- List Moderator, "TQM in Manufacturing and Service Industries"
- Chairman, Electronic Media
ASQC Section 0511 (Northern VA) Section Email: E-media@asqc0511.org
- Senior Internet Systems Administrator, Federal Emergency Management Agency
- ------------------------------------------------------------------------------
QUALITY RESOURCES ONLINE at: http://www.quality.org/qc
==============================================================================
------------------------------
From:
Date: Thu, 21 Nov 1996 08:36:29 -0500
Subject: [none]
*auth 2fc476f4
*subscribe iso9000-3
------------------------------
End of ISO 9000-3 Digest V1 #26
*******************************