[NTLK] [OT] NSA Secure Linux

From: hal9000x (hal9000x_at_mac.com)
Date: Sat Jun 15 2002 - 09:23:23 EDT

Thought this might be of interest to fellow Linux users on the list.


From: Simon Higgs <simon_at_higgs.com>
Date: Sat, 15 Jun 2002 00:48:13 -0700
To: farber_at_cis.upenn.edu
Subject: NSA's SElinux Type Enforcement patented by SCC

From: http://lwn.net/Articles/2376/

SELinux is a distribution produced by the U.S. National Security Agency.
is based on the Linux Security Module architecture (which is not yet part
of the 2.5 kernel). SELinux provides a whole set of mandatory access
control features to protect parts of the system from each other. There is
no "root" user in SELinux. Even if a server process is compromised, it is
highly limited in the damage it can do to the rest of the system.

According to the license page, SELinux is freely distributable under the
terms of the GPL. It looks like a high-quality and useful contribution to
the Linux community.

There is a potential problem, however. Much of the actual work in the
implementation of SELinux was done by Secure Computing Corporation (SCC).
SCC, in its implementation of SELinux, used a technology that it calls
enforcement. As it turns out, SCC has a patent on this technology.

[more] http://lwn.net/Articles/2376/

Best Regards,


Read the List FAQ/Etiquette: http://www.newtontalk.net/faq.html
Read the Newton FAQ: http://www.guns-media.com/mirrors/newton/faq/
This is the NewtonTalk mailing list - http://www.newtontalk.net

This archive was generated by hypermail 2.1.2 : Wed Jul 03 2002 - 14:02:22 EDT