March 28th, 2007
By Martin Hack
del.icio.us Digg this
Karl MacMillan (RedHat) wrote this response to Glenn Faden’s comparison between Sun’s new Solaris Trusted Extensions and SELinux.
Excerpt
The biggest misconception of this article that I want to address is that Red Hat Enterprise Linux 5 is a “trusted operating system”. It is not and hopefully never will be. Instead, Red Hat Enterprise Linux is a general purpose operating system that can meet the same requirements that traditionally required a special-purpose trusted operating system. This distinction may seem small, but it has large implications on the relevance and long-term viability of Red Hat Enterprise Linux and SELinux.
Full article
Comments: No Comments
December 11th, 2006
By Martin Hack
del.icio.us Digg this
Despite what others might be claiming what is supposed to be the most secure operating system, the people who are charged with protecting the most sensitive and critical information, are still largely deploying multi-level secure operating systems such as Trusted Solaris.
Starting today you can download (for free – registration required) Trusted Solaris Extensions as part of the latest Solaris 10 11/06 release.
Full article…
Comments: 1 Comment
October 23rd, 2006
By Martin Hack
del.icio.us Digg this
Here’s an interesting case study on how a television broadcaster is using Oracle Database Vault and Oracle Label Security (OLS) to secure their critical data.
I’ve known Oracle Label Security (it used to be called “Trusted Oracle”) for quite some time and I’m not surprised that it is getting adopted in traditional enterprise environments. Sure, Sarbanes-Oxley, HIPAA, and the need for comprehensive audit capabilities will also drive demand, but it is a testament to the fact that the perimeter “castle & moat” approach is a thing of the past. Edge security devices aka firewalls, will still be important but they are a mere commodity now.
Link to full case study.
Comments: No Comments
October 23rd, 2006
By Martin Hack
del.icio.us Digg this
The 22nd Annual Security Applications Conference will take place from
December 11-15 in Miami Beach, Florida.
There are several interesting talks that evolve around high assurance computing, in particular this one:
Fifteen Years after TX: A Look Back at High Assurance Multi-Level Secure Windowing.
For a full conference agenda and information visit the official site:
www.acsac.org
Comments: No Comments
RSS
