SELinux Security Policy Configuration System with Higher Level Language

SEEdit: SELinux Security Policy Configuration System with Higher Level Language

Security policy for SELinux is usually created by customizing a sample policy called refpolicy. However, describing and verifying security policy configurations is difficult because in refpolicy, there are more than 100,000 lines of configurations, thousands of elements such as permissions, macros and labels. The memory footprint of refpolicy which is around 5MB, is also a problem for resource ...

Issues with Language Policy and Planning in Iranian Higher Education

In this study, we attempt to bring to light various organisational and implementational clashes relevant to the conceptualisation of language policies at national level, and the planning of local practices with regard to degree programmes, language journals and conferences in Iranian higher education. We also prove that in its current status, the ELT syllabus in Iran, both at national and local...

Configuring the SELinux Policy

Integrating SELinux with Security-typed Languages

Recent advances in the area of security-typed languages have enabled the development of realistic applications aware of information flow security. Traditionally, operating systems have enforced MAC with minimal dependence on application programs. Although these approaches have common goals, they have progressed independently. However, there are many cases where systems depend on userlevel progr...

Provenance for configuration language security

Declarative, high-level configuration languages (e.g. LCFG, Puppet, Chef) are widely used in industry to configure large system installations. Configurations are often composed from distributed source files managed by many different users within different system and organisational boundaries. Users may make changes whose consequences are not easy to understand, and such systems also currently l...