|
LISA 2001 Abstract
Tools to Administer Domain and Type Enforcement
Serge Hallyn and Phil Kearns, College of William and
Mary
Abstract
Domain and Type Enforcement (DTE) is a mechanism that can be
effective in providing extremely fine-grained mandatory access control
in complex networked systems. Unfortunately, this level of control
comes at a price: the configuration of a DTE policy is usually in the
form of a dense ASCII file which does not lend itself to an
understanding or administration of the policy itself. We describe a
set of graphical tools which aid in that understanding and
administration.
- View the full text of this paper in
HTML,
PDF, and
PostScript.
The Proceedings are published as a collective work, © 2001 by the USENIX Association. All Rights Reserved. Rights
to individual papers remain with the author or the author's employer.
Permission is granted for the noncommercial reproduction of the complete
work for educational or research purposes. USENIX acknowledges all
trademarks within this paper.
- If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.
- To become a USENIX Member, please see our Membership Information.
|
Need help? Use our Contacts page.
