This article needs additional citations for verification. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed. Find sources: "Multi categories security" – news · newspapers · books · scholar · JSTOR(October 2007) (Learn how and when to remove this message)
Linux portal
Multi categories security (MCS) is an access control method in Security-Enhanced Linux that uses categories attached to objects (files) and granted to subjects (processes, ...) at the operating system level. The implementation in Fedora Core 5 is advisory because there is nothing stopping a process from increasing its access. The eventual aim is to make MCS a hierarchical mandatory access control system. Currently, MCS controls access to files and to ptrace or kill processes. The level of control MCS should have over access to directories and other file system objects has not yet been decided. [citation needed]
MCS access controls are applied after the Domain-Type access controls and after regular DAC (Unix permissions). In the default policy of Fedora Core 5, it is possible to manage up to 256 categories (c0 to c255). It is possible to recompile the policy with a much larger number of categories if required. [1]
As part of the Multi-Level Security (MLS) development work applications such as the CUPs print server will understand the MLS sensitivity labels, CUPs will use them to control printing and to label the printed pages according to their sensitivity level. The MCS data is stored and manipulated in the same way as MLS data, therefore any program which is modified for MCS support will also be expected to support MLS. This will increase the number of applications supporting MLS and therefore make it easier to run MLS (which is one of the reasons for developing MCS).
Note that MCS is not a sub-set of MLS, the Bell–LaPadula model is not applied. If a process has a clearance that dominates the classification of a file then it gets both read and write access. For example in a commercial environment you might use categories to map to data from different departments. So you could have c0 for HR data and c1 for Financial data. If a user is running with categories c0 and c1 then they can read HR data and write it to a file labeled for Financial data. In a corporate environment this is usually regarded as acceptable, if a user is trusted with both HR and Financial access then their integrity and skills are trusted to ensure that the data is not mistakenly released to the wrong file. For secret military data this is regarded as unacceptable and the Bell–LaPadula model prevents such accidental or malicious relabeling of data.
^"Multi-Category Security in SELinux in Fedora Core 5 | Linux Journal". www.linuxjournal.com. Retrieved 2020-07-06.
and 20 Related for: Multi categories security information
Linux portal Multicategoriessecurity (MCS) is an access control method in Security-Enhanced Linux that uses categories attached to objects (files) and...
Science Multiple Console Support, in OS/360 and successors Multicategoriessecurity, in Security-Enhanced Linux Multinational Character Set, used in VT220...
following categories: A backdoor in a computer system, a cryptosystem, or an algorithm is any secret method of bypassing normal authentication or security controls...
for MAC, and a first step before multilevel security (MLS) or its replacement multicategoriessecurity (MCS). It is a complement of role-based access...
Central Reserve Police Force Sashastra Seema Bal Securitycategories in India Assam Rifles National Security Guard Border outpost "Annual Report 2016-17"...
national level. Human security reveals a people-centred and multi-disciplinary understanding of security which involves a number of research fields, including...
Transport Layer Security (TLS) is a cryptographic protocol designed to provide communications security over a computer network. The protocol is widely...
"French Army adopts new BME multi-environment combat uniform | Defense News May 2022 Global Security army industry | Defense Security global news industry army...
Internet security is a branch of computer security. It encompasses the Internet, browser security, web site security, and network security as it applies...
access control (LBAC) Mandatory access control (MAC) Multi-level security (MLS) Non-interference (security) Object-capability model Protection ring Relationship-based...
five semi-overlapping categories called Trust Service Criteria which also support the CIA triad of information security: Security - information and systems...
A hardware security module (HSM) is a physical computing device that safeguards and manages secrets (most importantly digital keys), performs encryption...
The Border Security Force (BSF) is India's border guarding organisation at its borders with Pakistan and Bangladesh. It is one of the five Central Armed...
and virtualization security products. 2015: Bitdefender creates a new consumer product category with Bitdefender BOX and IoT security services. 2017: Bitdefender...
The National Security Agency (NSA) is an intelligence agency of the United States Department of Defense, under the authority of the Director of National...
the medium icebreaker USCGC Healy, with three new multi-mission vessels referred to as Polar Security Cutters (PSC). These heavy polar icebreakers will...
processing Internet of things IoT security device Knowledge as a service Microservices Mobile cloud computing Multi-access edge computing Multisite cloud...
The Common Security and Defence Policy (CSDP) is the European Union's (EU) course of action in the fields of defence and crisis management, and a main...
types of controls behind a cloud security architecture, they can usually be found in one of the following categories: Deterrent controls These controls...
Global Information
