[Security_sig] DCL security section early draft
chrisw at osdl.org
Mon Dec 13 12:32:59 PST 2004
* Chris Wright (chrisw at osdl.org) wrote:
> Here's the early draft, thanks to Lynn and Mary for capturing where we
> are and getting it written down.
Couple minor issues that I saw from quick review:
s/for a Linux/for Linux
s/Linux/Data Center Linux/
(the approach definitions still need a bit of clarification)
s/what gaps to/what gaps do/
I don't agree that separation of duties is primarily for audit trail.
References typically go at end.
Hmm, should it just be access control scheme at top-level, the DAC used
as minimal example/requirement?
We just need an audit log, the type could be discussed under the
top level need.
I think we'll need to cleanup the language regarding audit functionality
(the evident/resistant definitions need some refining).
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
More information about the security_sig