Serge Hallyn

Learn More
We present an implementation of mandatory access control for Linux network communications that restricts socket access to labelled IPSec security associations. The Linux Security Modules (LSM) framework defines a reference monitor interface that enables security modules (e.g., SELinux) to enforce comprehensive mandatory access control (MAC) for Linux(More)
Mandatory access control (MAC) enforcement is becoming available for commercial environments. For example, Linux 2.6 includes the Linux Security Modules (LSM) framework that enables the enforcement of MAC policies (e.g., Type Enforcement or Multi-Level Security) for individual systems. While this is a start, we envision that MAC enforcement should span(More)
Trent Jaeger David King Kevin Butler Jonathan McCune Ramón Cáceres Serge Hallyn Joy Latten Reiner Sailer Xiolan Zhang ∗ Department of Computer Science and Engineering, The Pennsylvania State University, University Park PA 16802 USA ◦ Department of Electrical and Computer Engineering, Carnegie-Mellon University, Pittsburgh PA 15213 USA † IBM T.J. Watson(More)
Login daemons require the ability to switch to the userid of any user who may legitimately log in. Linux provides neither a fine-grained setuid privilege which can be targeted at a particular userid, nor the ability for one privileged task to grant another task the setuid privilege. A login service must therefore always run with the ability to switch to any(More)
  • 1