Sun, NSA Link Arms To Improve Solaris - InformationWeek
IoT
IoT
Software // Enterprise Applications
News
3/13/2008
07:07 PM
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Sun, NSA Link Arms To Improve Solaris

The joint development project is intended to add to the mandatory access controls already provided by Solaris Trusted Extensions.

Sun Microsystems said Thursday that it has signed an agreement with the U.S. National Security Agency to jointly develop new security mechanisms for OpenSolaris.

The two will work with the open source project, OpenSolaris.org, to integrate an additional form of mandatory access control.

The joint development project is intended to add to the mandatory access controls already provided by Solaris Trusted Extensions, and any additions will be evaluated and tested by the OpenSolaris community, said Jonathan Schwartz, Sun CEO, in making the announcement.

The two will use a Flask -- Flux Advanced Security Kernel -- architecture to add to access controls. Flask builds flexible support for security policies into the operating system instead of having it address one real-world scenario. Under Flask, the operating system controls propagation of access rights but doesn't issue rights without consulting security policies. It can issue fine-grained rights, with differentiation between users and user groups. The operating system also enforces revocation of previously granted rights, according to papers published on Flask by the computer science department at the University of Utah.

"NSA is pleased that the work of its research organization in the area of secure computing is being used ... by industry," said Dick Schaeffer, chief of the NSA's Information Assurance Directorate, in making the announcement. The Sun-NSA project amounts to "a transfer of those technologies to the private sector," he said.

The OpenSolaris project was organized by Sun in 2005 as it made its Solaris version of Unix available as open source code. It had about 80,000 registered members as of November 2007.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
Annual IT Salary Report 
Base pay for IT professionals has remained flat this year with a median annual salary of $88,000 for staff and $112,000 for management. However, 58% of staff and 62% of managers who responded to our survey say they're satisfied with their compensation. Download this report to find out which positions earn the highest compensation.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of November 6, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll