You are here: silicon.com > Resources > White Papers > Desktops, Laptops and OS > Desktop Client OS > Linux - Open Source

Linux - Open Source White Papers

Integrating Flexible Support for Security Policies Into the Linux Operating System

Overview The protection mechanisms of current mainstream operating systems are inadequate to support confidentiality and integrity requirements for end systems. Mandatory Access Control (MAC) is needed to address such requirements, but the limitations of traditional MAC have inhibited its adoption into mainstream operating systems. The National Security Agency (NSA) worked with Secure Computing Corporation (SCC) to develop a flexible MAC architecture called Flask to overcome the limitations of traditional MAC. The NSA has implemented this architecture in the Linux operating system, producing a Security-Enhanced Linux (SELinux) prototype, to make the technology available to a wider community and to enable further research into secure operating systems. This paper describes the security architecture, security mechanisms, application programming interface, security policy configuration, and performance of SELinux.

Further White Paper Details
Publisher	National Security Agency	File Format	PDF
Date Published	January 2004
Format	White Papers
Topics	Linux - Open Source, Mac OS, Linux Server OS

Did you find this white paper useful?

Intel Tools for Thread-Oriented Development on Linux

Publisher:
Intel

Web Hosting Company Easily Deploys New Server Solution on a Multiplatform Network

Publisher:
Microsoft

Tags:
customer support services

Business Integration Technology Case Study: Novus International

Publisher:
Business Integration Technology

Live From Redmond: Visual WebGui: Silverlight for Line-of-Business Application

Publisher:
Microsoft Tips

Tags:
graphics applications

Live From Redmond: Visual WebGui: An Enterprise AJAX Application in 20 Minutes

Publisher:
Microsoft Tips

Tags:
programming languages

Red Hat doffs its cap at developers

The upcoming Fedora Core 4 is slated to support computers with IBM's Power processors, such as Apple's Mac mini. For example, it was the heavy Fedora feedback that let Red Hat graft the Security Enhanced Linux, or SELinux, feature onto RHEL 4...

Channel:
Operating Systems

Singapore pushes biometric uptake

But while governments globally have embraced biometrics, the wider corporate community have yet to do the same. While biometric technology promises better security, the difficulty in actual implementation and high equipment costs continue to be...

Criminal IT: There's no cure-all for information security

These counter-measures might take the form of firewalls, encryption, smartcards, tape backup systems and so forth, each one having an associated purchase, installation and maintenance cost; and each one guarding different aspects of...

IBM works with gov't on open source security trial

We wanted to have wider access between government departments but also wanted to increase the level of security, without locking down functions. The design is based on Security Enhanced Linux (SELinux) and IBM Websphere, a mandatory access control...

Cisco grabs IronPort for $830m

She said: "There have been so many acquisitions in the security space - IBM and ISS, EMC and RSA - that it's difficult for smaller security vendors not to have a wider portfolio. Richard Palmer, senior vice president of Cisco's Security Technology...

SOA raises security worries

Companies are happily trialling tech's latest TLA internally but problems could crop up as there has been little discussion of the impact the new architecture will have when unleashed on the wider IT environment, according to the analysts.

Channel:
SOA/Web Services
Tags:
security,
soa

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Linux - Open Source White Papers

Integrating Flexible Support for Security Policies Into the Linux Operating System

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific