-
Notifications
You must be signed in to change notification settings - Fork 1
/
20000809-trustedbsd-announcement.txt
67 lines (48 loc) · 2.85 KB
/
20000809-trustedbsd-announcement.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
From [email protected] Thu Oct 23 20:35:46 2003
Date: Sun, 9 Apr 2000 12:26:28 -0400 (EDT)
From: Robert Watson <[email protected]>
Reply-To: TrustedBSD Discussion List <[email protected]>
To: TrustedBSD Announcements List <[email protected]>
Subject: Announcement: TrustedBSD Extensions Project
I'm happy to announce the TrustedBSD Project, a set of trusted operating
system extensions for the FreeBSD operating system. TrustedBSD consists
of a set of kernel and user-land extensions targeting the Orange Book B1
evaluation criteria. Development is currently underway, and most of the
code is destined to go back into the base FreeBSD operating system;
however, as some components are both extensive and intrusive, the
TrustedBSD project provides a forum for discussion, design, and
development in the interim.
Trusted operating systems have a variety of requirements above and beyond
the normal operating system feature set, including the requirement that
they be extensively documented. To whet your appetite, the following
features are among those under development:
o Extensible and audited authorization framework for integrating
third-party authorization modules, including general-purpose subject and
object labeling and centralized policy management.
o Fine-grained capabilities for system functions so as to implement least-
privilege and reduce the risks of compromise.
o Mandatory access control for privacy and integrity, allowing FreeBSD to
be used in environments hosting mutually suspicious parties and
multi-level security models.
o Access control lists for the file system and other kernel resources
allowing fine-grained and manageable discretionary access control
o Event auditing support and single-host modular IDS system to monitor
security events and notify administrators in the event of irregularities
The TrustedBSD extensions will be made available under a two-clause
BSD-style license, which permits integration of the extensions into
projects under almost any licensing model, both free and commercial.
A web site is now online to act as a central source of information about
the project, and as a distribution point for code not yet committed to the
FreeBSD source repository.
http://www.trustedbsd.org/
There are also two mailing lists, trustedbsd-discuss and
trustedbsd-announce; more mailing lists will be created as necessary. To
subscribe to these mailing lists, please send email to:
Further information is available on the web site.
Robert N M Watson
[email protected] http://www.watson.org/~robert/
PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1
TIS Labs at Network Associates, Safeport Network Services
To Unsubscribe: send mail to [email protected]
with "unsubscribe trustedbsd-announce" in the body of the message