Re: [73attendees] Security Label BOF Location and Time
"David Quigley" <quigleystravels@gmail.com> Tue, 18 November 2008 00:55 UTC
Return-Path: <73attendees-bounces@ietf.org>
X-Original-To: 73attendees-archive@ietf.org
Delivered-To: ietfarch-73attendees-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1])
by core3.amsl.com (Postfix) with ESMTP id A9FFB28C190;
Mon, 17 Nov 2008 16:55:29 -0800 (PST)
X-Original-To: 73attendees@core3.amsl.com
Delivered-To: 73attendees@core3.amsl.com
Received: from localhost (localhost [127.0.0.1])
by core3.amsl.com (Postfix) with ESMTP id 1CA4D3A6A9C
for <73attendees@core3.amsl.com>; Mon, 17 Nov 2008 16:55:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.148
X-Spam-Level:
X-Spam-Status: No, score=-2.148 tagged_above=-999 required=5
tests=[AWL=-0.150, BAYES_00=-2.599, HTML_MESSAGE=0.001,
J_CHICKENPOX_66=0.6]
Received: from mail.ietf.org ([64.170.98.32])
by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id T8EukOlsuUzY for <73attendees@core3.amsl.com>;
Mon, 17 Nov 2008 16:55:28 -0800 (PST)
Received: from rv-out-0506.google.com (rv-out-0506.google.com [209.85.198.232])
by core3.amsl.com (Postfix) with ESMTP id 137BF28C0D0
for <73attendees@ietf.org>; Mon, 17 Nov 2008 16:55:28 -0800 (PST)
Received: by rv-out-0506.google.com with SMTP id b25so2652929rvf.49
for <73attendees@ietf.org>; Mon, 17 Nov 2008 16:55:27 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
h=domainkey-signature:received:received:message-id:date:from:to
:subject:cc:in-reply-to:mime-version:content-type:references;
bh=cLTA603te3Tn82jcDGA4PhVl8ACzfL9WDvkd94O4cYE=;
b=Jgi7uJX8I5A2qB6QrAXDzDkWZlAAiyVrjGLQewAzEdonha6BymS6aN7fwaIEPByH1X
zichO7Ec/TVqie0vWDQyL2+wVHxyUt7UbtKQ2/eiuH+N49micXRyC/x3YuB4t+YgrptW
dFDUwDaQNhlIw8Crbsr6vRtKxlgXiG49WL3F4=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
h=message-id:date:from:to:subject:cc:in-reply-to:mime-version
:content-type:references;
b=jTtO6VG8GvrSMEZPsfMSicHBMgsvFnDddoyUptmkjD538sjYajY0KTGZLMfEBO+hIH
YbzRcZyUPwJqzkIqSOeAwvIc3N/DD44Bd6BosH7k88cRwdUYMF8lI55a5Jt/a5YrWKSc
hsonH1BzkndJJIZm9euEQNATNb0o+NJ2Vu6rk=
Received: by 10.142.161.13 with SMTP id j13mr57551wfe.123.1226969727503;
Mon, 17 Nov 2008 16:55:27 -0800 (PST)
Received: by 10.142.173.16 with HTTP; Mon, 17 Nov 2008 16:55:27 -0800 (PST)
Message-ID: <678210550811171655m306aae7dke45c1a5536590deb@mail.gmail.com>
Date: Mon, 17 Nov 2008 18:55:27 -0600
From: "David Quigley" <quigleystravels@gmail.com>
To: "Jarrett Lu" <Jarrett.Lu@sun.com>
In-Reply-To: <49220F92.4040905@sun.com>
MIME-Version: 1.0
References: <678210550811170912i67701d84o7751c4effec67a51@mail.gmail.com>
<49220F92.4040905@sun.com>
Cc: 73attendees@ietf.org, saag@ietf.org
Subject: Re: [73attendees] Security Label BOF Location and Time
X-BeenThere: 73attendees@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Discussion list for the attendees of IETF 73 meeting."
<73attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/73attendees>,
<mailto:73attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/73attendees>
List-Post: <mailto:73attendees@ietf.org>
List-Help: <mailto:73attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/73attendees>,
<mailto:73attendees-request@ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============0799958023=="
Sender: 73attendees-bounces@ietf.org
Errors-To: 73attendees-bounces@ietf.org
On Mon, Nov 17, 2008 at 6:42 PM, Jarrett Lu <Jarrett.Lu@sun.com> wrote: > David Quigley wrote: > >> >> Background: >> >> >> Originally the term Security Label consisted of MLS and Integrity labels >> as they were used in the orange book. Since then there have been other forms >> of mandatory access control(MAC) and some MAC systems such as SELinux which >> implement several of the forms within the same system(Domain Type >> Enforcement (DTE), RBAC and MLS). In traditional MAC systems the policy is >> very rigid with the model being built into the operating system. In more >> recent MAC systems (SELinux, Trusted BSD, Solaris FMAC) the idea of >> flexibility of policy and mechanism have made it such that even if two >> systems use the same MAC model they may each possess completely different >> policies. Because of this the idea of a Domain of Interpretation(DOI) has >> become more important. Conceptually a DOI is a collection of systems where a >> label has a consistant semantic meaning across all of those systems. >> Traditionally MLS labels were represented as integers and bit fields so a >> DOI in this context defined what bits corresponded to which categories and >> what levels were present. In more recent systems labels are more directly >> represented as strings. For example in a DTE system a label may be >> httpd_content_t and two systems may possess this label but the semantics of >> it may be different. >> >> > This is a significant departure from the DOI definition that I > understood. As you mentioned above, using same DOI implies > all systems agree to same label interpretation and hence enforce > same label policies. I don't quite understand the rationale in > wanting to change that definition to accommodate DTE MAC > systems. Labels can be represented by strings or bitmaps (e.g. > CIPSO). What's important is that systems interpret the labels > the same way, and a DOI value is used to ensure that. If a label > has different meanings on different systems, what do you need a > DOI for? Just to be able interpret a well formed label? I'd think the > ability to interpret a label is implicit. If one doesn't recognize a > label based on label definition, the packet should be dropped. > > We can discuss this some more. This post is for people who are > interested in the topic but can't attend the BOF. > > > Jarrett > I didn't mean to imply that there was any accomodation of DTE in there. Your definition is correct and seems to be an isomorph of what I said. There shouldn't be anything in there that implies a particular mechanism for labels I was just giving some examples of the way they are currently done for those who don't know anything about the topic. If a label has two different meanings on two different system it is even more important to know what DOI it is in so you don't confuse the foreign form of that label for the local one. Sam is going to be at the meeting and said he will be taking notes so there should be a record posted after the meeting about what was discussed. Dave
_______________________________________________ 73attendees mailing list 73attendees@ietf.org https://www.ietf.org/mailman/listinfo/73attendees
- Re: [73attendees] Security Label BOF Location and… Jarrett Lu
- Re: [73attendees] Security Label BOF Location and… David Quigley