Analyzing security-enhanced Linux policy specifications

Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks Pub Date : 2003-06-04 DOI:10.1109/POLICY.2003.1206969

M. Archer, Elizabeth I. Leonard, Matteo Pradella

{"title":"Analyzing security-enhanced Linux policy specifications","authors":"M. Archer, Elizabeth I. Leonard, Matteo Pradella","doi":"10.1109/POLICY.2003.1206969","DOIUrl":null,"url":null,"abstract":"NSA's security-enhanced (SE) Linux enhances Linux by providing a specification language for security policies and a flask-like architecture with a security server for enforcing policies defined in the language. It is natural for users to expect to be able to analyze the properties of a policy from its specification in the policy language. But this language is very low level, making the high level properties of a policy difficult to deduce by inspection. For this reason, tools to help users with the analysis are necessary. The NRL project on analyzing SE Linux policies aims first to use mechanized support to analyze an example policy specification and then to customize this support for use by practitioners in the open source software community. We describe the model policies in the analysis tool TAME, the kinds of analysis we can support, and prototype mechanical support to enable others to model their policies in TAME. We conclude with some general observations on desirable properties for a policy language.","PeriodicalId":391947,"journal":{"name":"Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2003-06-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"21","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/POLICY.2003.1206969","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 21

Abstract

NSA's security-enhanced (SE) Linux enhances Linux by providing a specification language for security policies and a flask-like architecture with a security server for enforcing policies defined in the language. It is natural for users to expect to be able to analyze the properties of a policy from its specification in the policy language. But this language is very low level, making the high level properties of a policy difficult to deduce by inspection. For this reason, tools to help users with the analysis are necessary. The NRL project on analyzing SE Linux policies aims first to use mechanized support to analyze an example policy specification and then to customize this support for use by practitioners in the open source software community. We describe the model policies in the analysis tool TAME, the kinds of analysis we can support, and prototype mechanical support to enable others to model their policies in TAME. We conclude with some general observations on desirable properties for a policy language.

查看原文本刊更多论文

分析安全增强的Linux策略规范

NSA的安全增强型(SE) Linux通过提供用于安全策略的规范语言和带有用于执行该语言中定义的策略的安全服务器的类似flask的体系结构来增强Linux。用户自然希望能够从策略语言的规范中分析策略的属性。但是这种语言是非常低级的，使得策略的高级属性很难通过检查推断出来。因此，帮助用户进行分析的工具是必要的。分析SE Linux策略的NRL项目的目标首先是使用机械化支持来分析示例策略规范，然后定制这种支持以供开源软件社区的从业者使用。我们在分析工具TAME中描述建模策略，我们可以支持的分析类型，以及原型机制支持，以使其他人能够在TAME中建模他们的策略。最后，我们对策略语言的理想属性进行了一些一般性的观察。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks

自引率

0.00%

发文量