[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Polgen 1.1 is now available

To: selinux@xxxxxxxxxxxxx
Subject: Polgen 1.1 is now available
From: bsniffen@xxxxxxxxx (Brian T. Sniffen)
Date: Wed, 01 Jun 2005 14:38:54 -0400
Sender: owner-selinux@xxxxxxxxxxxxx
User-agent: Gnus/5.1007 (Gnus v5.10.7) Emacs/21.4 (gnu/linux)

Version 1.1 of Polgen, MITRE's tool suite for automated recognition
of software design patterns and generation of SE Linux type enforcement
policy, is now available at

    http://www.mitre.org/tech/selinux/


The new release offers:

* An improved GUI, with better intelligence about which questions 
  not to ask.

* "No GUI" mode, for batch use.

* Separation of concerns: the pattern recognizers are entirely
  distinct from the policy applied when a pattern is detected.

* New "Daemon" pattern, as well as improvements to Single Process
  Mediator and Executable.


Polgen is a suite of tools which assist in generating SE Linux
policy based on dynamic analysis of information flow.  It includes:

* SE Linux-aware strace.  Now it's possible to see exactly what a
  program's doing, with more detail than AVC logs typically show.

* FD Tracker, a tool for reducing strace output to simple lists of file
  descriptors used for read- or write-like information flow.  This
  typically reduces strace output by two orders of magnitude: over 5
  MB of strace output is cooked down to only 50 KB of easily analyzed
  data.

* Spar, a pattern analysis tool.  Spar presents a GUI wizard-style
  interface.  It looks for patterns in Tracker output, identifying
  eighteen common arrangements of system calls.  Spar's wizard
  interface gives the user control: the ability to correct falsely
  recognized patterns and to guide generation of new types.  Patterns
  suggested by the program can be accepted for policy generation or
  rejected.  New types can be automatically created by Spar, and
  populated with resources.

  Spar produces .te and .fc files which can be incorporated directly
  into your existing policy---though as with any automated output,
  they should be reviewed by humans before production use.

Download Polgen today from <http://www.mitre.org/tech/selinux/>.

Polgen is available under the GNU General Public License,
version 2 or later.


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.

Prev by Date: Re: [Patch 1/3] Loadable policy module infrastructure
Next by Date: Re: [Patch 1/3] Loadable policy module infrastructure
Previous by thread: [ PATCH ]: evolution/thunderbird/gconf/orbit/other stuff - comments?
Next by thread: SELinux on Arm?
Index(es):
- Date
- Thread

This mailing list archive is a service of Copilot Consulting.