SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Research Skip Research Menus Research Menu Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: dynamic context transitions - a seteuid parallel This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] From: Karl MacMillan <kmacmillan_at_tresys.com> Date: Mon, 01 Nov 2004 20:12:07 -0500 Chad Hanson wrote: >Luke Kenneth Casson Leighton wrote: > > >>what are the alternatives? >> >> >> > >The alternatives are to overprivilege the application which is not >acceptable or to rewrite all of the applications before they can be used on >this new platform. > It is not clear to me how the application is not overprivileged already if it is allowed to freely change between a privileged and unprivileged domain. The application must be fully trusted with the maximum access that it is granted. A misbehaving application will simply not drop access (obviously). Additionally, it seems that from an analysis stand point, these domains must be treated as equivalent and so it is not clear how the argument can be made that this increases assurance. Karl >The latter is goal which can and should be achieved or >time. Applications can streamlined and reorganized to fit into the modular >framework and of cooperating applications. This is a considerable effort and >major roadblock to utilizing SELinux and therefore Linux for these types of > > >The other main roadblocks are already being addressed with Linux getting >CAPP EAL3 and soon to be EAL4 certifications. Add LSPP and RBAC and you have >Linux system suitable to address secure information sharing needs. > >-Chad > > > >>l. >> >>p.s. not that i actually understand MLS enough to understand >>any answers >>[yet] but i'm just encouraging people to bounce ideas. >> >> >> >> > >-- >This message was distributed to subscribers of the selinux mailing list. >If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with >the words "unsubscribe selinux" without quotes as the message. > > -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Mon 1 Nov 2004 - 20:12:45 EST This message: [ Message body ] Next message: Colin Walters: "Re: dynamic context transitions" Previous message: Karl MacMillan: "Re: dynamic context transitions" In reply to: Chad Hanson: "RE: dynamic context transitions - a seteuid parallel" Next in thread: Frank Mayer: "RE: dynamic context transitions - a seteuid parallel" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom