[cap-talk] Mandatory Access Control (was: What's "Discretionary Security")
Ka-Ping Yee
cap-talk at zesty.ca
Thu Jan 4 07:19:03 CST 2007
On Thu, 4 Jan 2007, Jonathan S. Shapiro wrote:
> Ping: on reflection, I like the approach of simply quoting the TCSEC
> definitions and then going on to explain what the shortcomings were in
> those views and how the terms should be understood in a modern context.
> Does this seem sensible to you?
Yes, it does. The article for "Discretionary access control" is now
a start at that, though in terms of the modern context there is probably
more to say (or what is said could be better put). If you have time,
have a look and let me know what you think.
In a similar vein, i placed the TCSEC definition at the top of the
article on "Mandatory access control", but mostly left the rest of the
article alone because i didn't feel confident rewriting it.
-- ?!ng
More information about the cap-talk
mailing list