zlacker

[parent] [thread] 1 comments
1. dedwar+(OP)[view] [source] 2010-04-08 15:14:03
This seems analogous, in principle, to a system with fully utilized role-based access control - like security-enhanced linux or similar - although easier to grok perhaps?

Is there a fundamental difference? (I understand the technical difference - I'm asking more in terms of semantics - what makes this a better security model?)

replies(1): >>hga+B
2. hga+B[view] [source] 2010-04-08 15:25:52
>>dedwar+(OP)
I think the granularity is so different that it's a difference in kind.

And the granularity is at a very high level; I gather few want to wade into the details of SELinux, and if I hadn't been exposed to the concepts for 30 years (sic, I started learning Multics in 1979) I probably would have just turned off SELinux when I was using Fedora last year.

[go to top]