Hiya folks, On 28 Jan 2009, at 18:01, Jarrett Lu wrote:
> This project adds Multilevel Security (MLS) labels to networks and > host > network > interfaces. This feature is used in OpenSolaris Trusted Extensions > (TX). > Labeling > networks and network interfaces further hardens OpenSolaris as a > trusted > operating > system. Upon completion of this project, OpenSolaris TX systems should > exhibit the > following improvements: > - stronger network segregation based on security labels > - a better policy mechanism for forwarding labeled IP traffic > - an easier way to configure TX systems as it won't require MLS > knowledge of every other hosts and networks > - a solid base for building other labeled networking technologies > such as labeled dynamic routing and labeled IP multicast. Please excuse me for perhaps being a little behind the times here, folks, but as an old-school TSol and TX geek, I'm interested in knowing, in finer-grained detail, what this project is proposing, over and above what can currently be achieved by applying templates defined in tnrhtp to addresses or subnets in tnrhdb. More detailed info is welcomed. Cheers, -- Dave Walker Client Solutions, Sun Microsystems UK Tel: +44 780 3079264 http://blogs.sun.com/davew/
