Sunと米国家安全保障局がセキュアOSを共同開発へ,SELinuxのOpenSolaris版。???
TrustedSolarisがあるのに、なぜセキュリティレベルの低いSE実装をするんだ?
答え:TrustedSolarisがあまりにも使い勝手が悪いから。
と思ったら、Pete Zaitcevさんから「James Morrisがこんな風に書いてるよ」と、「日本語」でメールをくれた。おおう、Peteさん、日本語で読み書きしてるぢゃないか(^_^;
This is very exciting in terms of of establishing compatible security across operating systems, particularly for Mandatory Access Control, which has traditionally been narrowly focused and generally incompatible. With FMAC, we’re closer to seeing truly ubiquitous, cross-platform MAC security.
I’ll be interested to see how they approach the integration, with the opportunity to learn lessons from the SELinux experience.
It’ll also be great to have an expanded TE/Flask community. According to their project page, areas of work include improving usability (we can never have enough of that), desktop integration via XACE, integration with Xen (presumably via XSM), Labeled NFS, and Labeled IPSec. It seems they already have a separate project for the latter, txipsec.
なるほど、色々Linux側にもメリットはあるな、確かに。