Extending SELinux to meet LSPP data import/export requirements
نویسندگان
چکیده
Common Criteria certification of SELinux at Evaluation Assurance Level 4 against the Labeled Security Protection Profile(LSPP)[1] and Role-Based Access Control Protection Profile(RBACPP)[2] is intended to advance its acceptance and deployment in the federal sector. SELinux already provides a flexible security policy infrastructure upon which systems that conform to hierarchical Multi-level Security (MLS), as required by LSPP, and role-based access control security policies may be built. However, some RBACPP and LSPP requirements in the user data protection category and their effects on usability make support for features such as polyinstantiated directories, multi-context aware cron, and data import/export restrictions based on device security attributes desirable. This paper presents proposed extensions to SELinux to satisfy some of the LSPP data import/export and RBACPP requirements for Common Criteria certification at EAL4, while maintaining a functional and usable system.
منابع مشابه
Extending Linux for Multi-Level Security
LinuxTM distributions have received numerous Common Criteria certifications in the last few years. Building on the recent Controlled Access Protection Profile (CAPP) certifications, an Open Source development effort to make Linux compliant with the Labeled Security Protection Profile (LSPP) and Role-Based Access Control Protection Profile (RBACPP) has been ongoing for almost two years. Developm...
متن کاملReconstitution of HIV-1 rev nuclear export: independent requirements for nuclear import and export.
The Rev protein of HIV-1 actively shuttles between nucleus and cytoplasm and mediates the export of unspliced retroviral RNAs. The localization of shuttling proteins such as Rev is controlled by the relative rates of nuclear import and export. To study nuclear export in isolation, we generated cell lines expressing a green fluorescent protein-labeled chimeric protein consisting of HIV-1 Rev and...
متن کاملThe Impact of Import and Export of Medium Technology Industries on Economic Growth of Iran
Technology spillover from trade channel is important. Absorbing foreign technology by the channel of importation and using the latent technology in those products create export development, increase the quality and quantity of manufactured goods, and modify management, technology improvements and production of goods with high added value; this might favorise optimal allocation of resources. Imp...
متن کاملSpatial Panel Pattern Modeling in the Analysis of Saffron Foreign Trade Network
One of the factors that have a significant impact on the economic development of countries is reliance on foreign trade, and due to the dependence of countries on export earnings and the import of foreign trade, it plays an essential and indisputable role in the growth and development of different sectors. Foreign trade in agricultural products has an important role in expanding the export...
متن کاملViruses, microorganisms and scientists meet the nuclear pore. Leysin, VD, Switzerland, February 26-March 1, 1998.
The modular architecture of the nuclear pore complex (NPC) consists of a membrane-embedded basic framework (the ‘spoke complex’) made up of eight multidomain spokes with two rings on each face (Figure 1A). The ring facing the cytoplasm is decorated with eight ~50 nm fibrils extending into the cytosol, and the nuclear ring is capped with a basket-like assembly of eight thin, 50–100 nm filaments ...
متن کامل