Date: Tue, 14 Oct 1997 08:29:52 -0700 (PDT) From: Brian Beattie <beattie@stt3.com> To: Christopher Petrilli <petrilli@amber.org> Cc: Brian Mitchell <brian@firehouse.net>, Colman Reilly <careilly@monoid.cs.tcd.ie>, Douglas Carmichael <dcarmich@mcs.com>, freebsd-hackers@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: C2 Trusted FreeBSD? Message-ID: <Pine.GSO.3.95.971014082804.1809D-100000@durin> In-Reply-To: <199710132110.RAA29578@dworkin.amber.org>
index | next in thread | previous in thread | raw e-mail
On Mon, 13 Oct 1997, Christopher Petrilli wrote: > > THat having been said, there is one other requirement that would need to > be addressed: > > * Object Reuse (2.2.1.2) > > THis is defined as follows: > > "All authorizations to the information contained iwthin a storage object > shall be revoked prior to initial assignment, allocation or reallocation > to a subject from the TCB's pool of unused storage objects. No > information, including encrypted representations of information, produced > by a prior subject's actions is to be available to any subject that > obtains access to an object that has been released back to the system." > > Basically, we need to purge all memor when it is allocated, or > deallocated. > Nope, only when it is allocated, and this is allready done. The reason is that until it is allocated, no "subject" has access to the "object".home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.3.95.971014082804.1809D-100000>