why
Releases
Current version
Git/Latestdiff: 1.5.6
Latest Snapshots
Produced after each commit or rebase to new upstream version
GIT
RSBAC source code, can be unstable sometimes
Events
No events planned
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
why [2006/05/18 10:37] ao Change feature list link |
why [2009/01/16 11:11] 127.0.0.1 (old revision restored) |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | ~~NOTOC~~ | ||
| ====== What is RSBAC ====== | ====== What is RSBAC ====== | ||
| + | |||
| ===== Key Features ===== | ===== Key Features ===== | ||
| Line 6: | Line 8: | ||
| * Independent of governments and big companies | * Independent of governments and big companies | ||
| * Several well-known and new security models, like MAC, ACL and RC | * Several well-known and new security models, like MAC, ACL and RC | ||
| - | * On-access virus scanning with the Dazuko interface | ||
| * Detailed control over individual user and program network accesses | * Detailed control over individual user and program network accesses | ||
| - | * Fully access controlled kernel level user management | + | * Virtual User Management, in kernel and fully access controlled |
| + | * On-access virus scanning with the Dazuko interface | ||
| * Any combination of security models possible | * Any combination of security models possible | ||
| * Easily extensible: write your own model for runtime registration | * Easily extensible: write your own model for runtime registration | ||
| Line 52: | Line 54: | ||
| //To get a list and explanation of every model included in RSBAC, see the [[documentation:rsbac_handbook:security_models|Security Models]] section of the handbook.// | //To get a list and explanation of every model included in RSBAC, see the [[documentation:rsbac_handbook:security_models|Security Models]] section of the handbook.// | ||
| + | |||
| + | {{documentation:rsbac_handbook:architecture_implementation:functional_diagram_gfac_rsbac2.png|}} | ||
| RSBAC framework logic is based on the work done for the Generalized Framework for Access Control ([[http://www.acsa-admin.org/secshelf/book001/09.pdf|GFAC]]) by Abrams and LaPadula. | RSBAC framework logic is based on the work done for the Generalized Framework for Access Control ([[http://www.acsa-admin.org/secshelf/book001/09.pdf|GFAC]]) by Abrams and LaPadula. | ||
| Line 69: | Line 73: | ||
| //A general goal of RSBAC design has been to some day reach (obsolete) Orange Book ([[http://csrc.nist.gov/publications/history/dod85.pdf|TCSEC]]) B1 level. Now it is mostly targeting to be useful as secure and multi-purposed networked system, with special interest in firewalls.// | //A general goal of RSBAC design has been to some day reach (obsolete) Orange Book ([[http://csrc.nist.gov/publications/history/dod85.pdf|TCSEC]]) B1 level. Now it is mostly targeting to be useful as secure and multi-purposed networked system, with special interest in firewalls.// | ||
| + | |||
| + | //Note: this page is also part of the [[:documentation:rsbac_handbook|RSBAC Handbook]]// | ||
why.txt · Last modified: 2009/01/16 11:11 by 127.0.0.1