sun microsystems Systems Architecture Committee _________________________________________________________________ Subject: Layered Trusted Solaris Submitted by: Glenn Faden File: PSARC/2002/762/opinion.ms Date: March 22nd 2006 Committee: Gary Winiger, James Carlson, Ed Gould, Glenn Skinner, Bill Sommerfeld. Product Approval Committee: Solaris PAC solaris-pac-opinion@sun.com 1. Summary This project is the Umbrella for adding Multi-Level Security to Solaris in a layered manner. It is a follow on to the previous releases of Trusted Solaris which were complete independent redeliveries of the underlying Solaris base with multi-level security integrated into them. The layered com- ponent is a set of packages which when added to Solaris con- vert it into a multi-level system. The combination of Solaris and the layered packages is intended to meet the Common Criteria Labeled Security Protection Profile. 2. Decision & Precedence Information This project is approved as specified in references [1] and [2]. This project may be delivered in a patch release of Solaris. This project depends on the following projects and may not be delivered before them. LSARC/2004/109 Trusted Solaris X Server Extension PSARC/2005/060 TSNET: Trusted Networking with Security Labels LSARC/2005/075 Trusted Solaris CDE PSARC/2005/259 Layered Trusted Solaris Label Inter- faces PSARC/2005/573 Solaris Trusted Extensions for Printing PSARC/2002/762 Copyright 2006 Sun Microsystems - 2 - PSARC/2005/691 Trusted Extensions for Device Alloca- tion PSARC/2005/723 Solaris Trusted Extensions Filesystem Labeling UIRB/2006/006 Trusted Extensions for Solaris Manage- ment Console LSARC/2006/007 Trusted Extensions for Solaris Manage- ment Console PSARC/2006/009 Labeled Auditing PSARC/2006/155 Trusted Extensions RBAC Changes PSARC/2006/191 is_system_labeled 3. Interfaces The project exports the following interfaces. __________________________________________________________________ | Interfaces Exported | |__________________|_________________|___________________________| |Interface | Classification | Comments | |__________________|_________________|___________________________| | | Trusted Exten-| | | | sions | | | | Privileges | | |__________________|_________________|___________________________| |net_bindmlp | Stable | TNET kernel interpreted| | | | privileges PSARC/2005/060| |net_mac_aware | Stable | | | | | | |sys_trans_label | Stable | svc:/system/labeld inter-| | | | preted privilege| | | | PSARC/2005/259 | | | | | |win_colormap | Stable | X Server interpreted| | | | privileges LSARC/2004/109| |win_config | Stable | | |win_dac_read | Stable | | |win_dac_write | Stable | | |win_devices | Stable | | |win_dga | Stable | | |win_downgrade_sl | Stable | | |win_fontpath | Stable | | |win_mac_read | Stable | | |win_mac_write | Stable | | |win_selection | Stable | | |win_upgrade_sl | Stable | | |__________________|_________________|___________________________| | | | | |__________________|_________________|___________________________| PSARC/2002/762 Copyright 2006 Sun Microsystems - 3 - __________________________________________________________________ | Interfaces Exported | |__________________|_________________|___________________________| |Interface | Classification | Comments | |__________________|_________________|___________________________| | | Trusted Exten-| | | | sions Package| | | | Names | | |__________________|_________________|___________________________| |SUNWtsr | Stable | Core consolidation | |SUNWtsu | Stable | | |SUNWtsc | Stable | | |SUNWtsmc | Stable | | |SUNWtsman | Stable | | | | | | |SUNWwxwts | Stable | X Windows consolidation | |SUNWxw-tsol-module| Stable | | | | | | |SUNWdttsu | Stable | CDE consolidation | |SUNWdttsr | Stable | | |SUNWdttshelp | Stable | | | | | | |SUNWmgts | Stable | Admin (SMC) consolidation| |__________________|_________________|___________________________| 4. Opinion The "Layered Trusted Solaris" project started out as an Umbrella for what was to be an unbundleded separately priced layer on top of Solaris. During the life of the project, it was decided to bundle it with Solaris and to rename the pro- duct to Solaris Trusted Extensions. The subprojects define a number of privileges. "Least Privilege for Solaris" (PSARC/2002/118) defines a mechanism for adding unbundled privileges to the default privilege set. The project team asserted not only that there were bugs in the unbundled privileges support which were not being addressed by the responsible engineer, but also that by the nature of the project it was de facto bun- dled and it was only prior marketing requirements which had lead to the perspective of an unbundled delivery. Upon review of the various points [2], the committee, agreed with the project team and approved bundling the privileges within Solaris. 5. Minority Opinion(s) None. 6. Advisory Information None. PSARC/2002/762 Copyright 2006 Sun Microsystems - 4 - 7. Appendices 7.1. Appendix A: Technical Changes Required None. 7.2. Appendix B: Technical Changes Advised None. 7.3. Appendix C: Reference Material Unless stated otherwise, path names are relative to the case directory PSARC/2002/762. 1. Umbrella Materials File: inception.materials/* 2. Email discussion File: mail PSARC/2002/762 Copyright 2006 Sun Microsystems