Security Enhanced Linux
What's New
Frequently Asked Questions
Background
Documents
License
Download
Participating
Mail List
Archives
Remaining Work
Contributors
Related Work
Press Releases
Information Assurance Research
NIARL In-house Research Areas
Mathematical Sciences Program
Sabbaticals
Computer & Information Sciences Research
Technology Transfer
Advanced Computing
Advanced Mathematics
Communications & Networking
Information Processing
Microelectronics
Other Technologies
Technology Fact Sheets
Publications
Related Links
|
SELinux Mailing ListMLS and no read up, no write down
From: Stefan Schulze Frielinghaus <stefan_at_sf-net.com>
Date: Tue, 1 May 2007 10:06:20 +0200
in D. Bell and L. LaPadula "Secure Computer System: Unified Exposition and Multics Interpretation" on page 42 the feature to append something to a file is described as: if attribute is append, current-level(subject) is dominated by level (object); Wouldn't this mean that someone with a security level e.g. of unclassified could append something to a file labeled as top secret? Isn't this a security problem? For example someone can't read a top secret file but he could append rubbish or false information. M. Bishop "Computer Security: Art and Science" describes the Bell LaPadula model on page 125 even for write acces: S can write O if and only if l(s) <= l(o) and S has discretionary write access to O. Is the SELinux MLS stuff exactly build like the Bell LaPadule theory? The "no read up" theory sounds good and logical but the "no write down" sounds suspicious. I would expect that if I write to a file that the current level of the subject has to be equal to the level of the object. How is something like that handled by SELinux?
Best regards,
-- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.Received on Tue 1 May 2007 - 04:06:24 EDT |
|
Date Posted: Jan 15, 2009 | Last Modified: Jan 15, 2009 | Last Reviewed: Jan 15, 2009 |