Downgrading labels
David Collier-Brown
David.Collier-Brown at Sun.COM
Sun Mar 27 15:43:05 GMT 2005
Robert Watson wrote:
> If you set a subject label with high, effective, and low labels identical,
> then there is no useful ability to relabel. However, you can use this
> mechanism to create daemons with limited privilege -- the ability to
> relabel solely between a limited set of compartments or levels, for
> example. This is a bit more granular than a single "is privileged" bit,
> and I think offers some useful benefits.
Can you speak a bit on relabeling between compartments? I tend to
use the term to indicate a level/category pair (eg, A & Q, secret)
and wonder if you are using the term the same way.
If I had a document that was in the Admin and Quartermaster
categories, at secret, and I had the appropriate privilege, could
I relabel it just (Admin, secret)?
I'm specifically thinking of a scenario in the commercial world,
companies A and B work together on a project, and A takes
the combined work and relabels it (A, top secret), while
B relabels it (B, public domain).
--dave (ex-B2-Multics guy) c-b
--
David Collier-Brown, | Always do right. This will gratify
Sun Microsystems, Toronto | some people and astonish the rest
davecb at canada.sun.com | -- Mark Twain
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-discuss" in the body of the message
More information about the trustedbsd-discuss
mailing list