Table Of Contents:

This page has information about Security technologies for Linux.

CELF Technology/Project pages

Documents

Key Requirements and the Related Technologies

Where the technologies are defined as follows:

  1. Umbrella
  2. Linux Security Module (LSM) framework
  3. PAX patch – (currently x86 only)
  4. LOMAC
  5. LIDS
  6. Netfilter
  7. digsig/bsign/elfsig
  8. Trusted Computing Group (TCG)
  9. TPE (included with LIDS)
  10. PRAMFS
  11. ACL file system extensions
  12. Posix capabilities associated with files

Requirements

Technologies

Reliability

10

Secure/trusted boot

8

Access control

1, 4, 5, 11, 12

Buffer/stack protection

3

Intrusion detection

5, 8

Configurable security

1, 2, 4, 5, 7, 9(?), 11, 12

Authentication

1, 7

Signed binaries

1, 7

Trusted connection

IPSec, SSL already supported

Secure services

1, 4, 5, 7, 8

Firewall

6

API support for security hardware

8

Secure field upgradeability

9

Authentication

8

Of the listed technologies, the CELF Security Working Group is studying or supporting the following:

Resources

Security Frameworks

Security Components

Security features

Other Resources

SecurityResources (last edited 2008-05-07 18:21:39 by localhost)