Comparing the multilevel security policies of the Solaris Trusted Extensions and Red Hat Enterprise Linux systems
Sun and Red Hat have both submitted new versions of their trusted OS for CC certification evaluation. While these systems are being evaluated against the same CC protection profiles and at the same evaluation assurance level, these systems differ in significant ways that affect how a customer might choose to use such systems.
The new Sun Solaris Trusted Extensions (Trusted Extensions) software implements its multilevel security (MLS) policy based on the Solaris Containers model, which uses labeled zones. Instead, Red Hat's approach is to create an MLS policy configuration that extends the type enforcement policy implemented in Security-Enhanced Linux (SELinux).
[ Read more ]