In Operating Systems We Trust | eWeek

In Operating Systems We Trust

Written By
Jason Brooks
Jason Brooks
Sep 3, 2004
2 minute read
eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

eWEEK Labs tested two trusted operating system products: the National Security Agencys SELinux, which makes Linux into a trusted operating system, and Sun Microsystems Inc.s Trusted Solaris 8. Both have access controls that are much more fine-grained than those in mainstream operating systems, limiting the damage that can be done by an attacker who takes control of a process running with root privileges by minimizing the permissions of that process.

SELinux, Trusted Solaris and other trusted operating system products are particularly good for systems hosting Web-facing services that must be exposed to potential attacks over the Internet to serve their functions.

/zimages/6/28571.gifClick hereto read a case study of a company using another trusted operating system, PitBull LX for Solaris 8 from Argus Systems Group.

SELinux, which was developed by NSA to demonstrate how mandatory access controls could be integrated into a mainstream operating system, has been around for a few years now, but its on the cusp of coming into its own as a core operating system component. Administrators can install SELinux on pretty much any Linux distribution, but the details of integration with specific distributions are still being worked out.

Like SELinux, Trusted Solaris is a good fit for server setups, but Trusted Solaris also offers a client-side option, with trusted feature integration that extends directly to the desktop.

SELinux and Trusted Solaris enable administrators to install and run applications that are standard for Linux and Solaris, respectively. However, our tests show that drafting effective application security profiles is a complicated task on either platform: Changing a systems behavior from a scheme that grants broad swaths of permissions to one that requires specific clearance for every action is not a simple process.

Indeed, deploying a trusted operating system in a companys infrastructure will require careful planning, but the security benefits can make this time well spent.

/zimages/6/28571.gifClick here to read the review of SELinux.
/zimages/6/28571.gifClick here to read the review of Trusted Solaris 8.

/zimages/6/28571.gifCheck out eWEEK.coms Linux & Open Source Center at http://linux.eweek.com for the latest open-source news, reviews and analysis.

/zimages/6/77042.gif

Be sure to add our eWEEK.com Linux news feed to your RSS newsreader or My Yahoo page

eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.