COMMERCIAL IP SECURITY OPTION (CIPSO)
Citation
- Internet draft, July 1992
Annotations
- DoD? Basic Security Option (BSO) (Type 130)
- DoD? Extended Security Option (ESO) (Type 133)
- CIPSO has been designed to provide the format and procedures required to support a Mandatory Access Control security policy and multi-level security in commercial operating systems.
- DOI governs the interpretation of those tags.
- SELinux: focus on enforce security on local resources.
- Netlabel: focus on enforce security by packet labeling (CIPSO) using LSM hooks to implementing the labeling and checking. Incoming sockets get a context that is based on the CIPSO tag and the context of the listening socket. Current implementation of NetLabel? support just one tag type.
Edit | Attach | Print version | History: r1 | Backlinks | Raw View | More topic actions
Topic revision: r1 - 30 Oct 2007 - 23:31:33 - QiLiao
Repository Web
Create New Topic
Index
Search
Changes
Notifications
Statistics
Preferences
Edu |
|
Copyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Send feedback