Updated: Type Enforcement security project joins the OpenSolaris security community
By user12611852 on Mar 10, 2008
Update: Our own architect of Solaris 10 Trusted Extensions corrected me on my statements about MLS capability and Type Enforcement. I've corrected my table. Glenn writes in a comment:
It isn't accurate to state that Type Enforcement enables multilevel security. Although you could define relationships between various types that have similar semantics to Bell & Lepadula rules, this is not practical in general. Types, unlike sensitivity labels, don't have implicit hierarchical relationships. Instead the flexibility of the relationships between types is seen as an advantage over the more rigid MLS rules.
One reason this is confusing is that FLASK in SELinux supports both Types and MLS labels, whereas the Solaris implementation of FLASK will just focus on Types since MLS labels are already associated with zones.
One of the benefits of open sourcing Solaris is the ability to take advantage when "Innovation Happens Elsewhere" (to quote Sun co-founder Bill Joy). One of the innovative projects that originated elsewhere is an implementation of Type Enforcement (aka "Flask") for OpenSolaris. Type Enforcement is a form of Mandatory Access Control that has already appeared in the Security Enhanced Linux project first developed at NSA. SELinux has worked its way from a science project into major Linux distributions today.
What does this mean for Open Solaris?
- First, it means that we have active development and external contributions to the OpenSolaris community.
- Secondly, it means that (when completed), customers and governments who prefer the Type Enforcement to Sun's own Solaris 10 Trusted Extensions model, will have that choice without having to give up the other advanced features of Solaris.
Who is doing this work?
- Stephen Smalley is a researcher at the NSA who has published a number of papers on Type Enforcement and the Security Enhanced Linux project
- John Weeks is an engineer in Sun Federal who has worked for years in the government and security realms.
When can I get it?
The project has only recently been created at in the OpenSolaris security community. The source code has yet to be written and posted. Nothing has been integrated in to the next version (Nevada) of the Solaris kernel yet and there are no plans yet for it to be in Solaris 10. As the project progresses it may be fully integrated into the Nevada kernel and eventually find its way into a commercial release of Solaris. Join the community to keep up to date on the latest information.
How will Type Enforcement complement the current Solaris security model?
Why should I care?
If you have been looking at using SELinux in your project, you should join the community and contribute your comments, feedback, testing and even code to the project creating a better Solaris.