Abstract
GNU Enterprise is developing "enterprise software" capable of running on multiple operating systems and multiple database management systems, and intended for use by enterprises ranging from very small (e.g., one person) to very large (e.g., many people, multi-site). This presentation will address the challenges and lessons learned to date in developing a security framwork for GNU Enterprise. Challenges include the wide range of potential security requirements and assurance levels, the wide range of operating system and database security capabilities, the allowable influence of high assurance needs on basic system capabilities, and providing sufficient user guidance to facilitate selection of an appropriate operating system, database, and GNU Enterprise configuration to implement user-determined policies. One important lesson is recognition that many security requirements reflect assurance conditions imposed on enforcement of business process rules, organizational policies, and external legal obligations. A highly sensitive feasibility relationship exists among business rule structure, business logic implementation, assurance needs, and choices of operating system and database. The range of choices for Linux will be enriched when Version 2.6, including Loadable Security Module, is released, and when Security Enhanced Linux achieves Common Criteria evaluation. The current draft GNU Enterprise Security Framework can be found athttp://www.gnuenterprise.org/docs. |
