TOMOYO Linux
E724150
TOMOYO Linux is a security-focused enhancement for the Linux kernel that provides mandatory access control through fine-grained, policy-based restrictions on system behavior.
All labels observed (2)
| Label | Occurrences |
|---|---|
| PaX | 1 |
| TOMOYO Linux canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T8285429 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: TOMOYO Linux Context triple: [Linux Security Modules API, usedBy, TOMOYO Linux]
-
A.
Kernel Self Protection Project
The Kernel Self Protection Project is a security-focused initiative aimed at hardening the Linux kernel against vulnerabilities and exploitation through proactive defensive features and development practices.
-
B.
Unbreakable Enterprise Kernel
Unbreakable Enterprise Kernel is Oracle’s optimized, enterprise-grade Linux kernel designed to deliver enhanced performance, stability, and support for Oracle workloads and cloud environments.
-
C.
Luks
Luks is the surname of American realist painter and Ashcan School member George Luks.
-
D.
Encrypting File System
Encrypting File System is a Windows feature that provides transparent file-level encryption to protect data stored on NTFS volumes.
-
E.
MINIX operating system
MINIX operating system is a small, Unix-like, microkernel-based operating system originally created for teaching and research that later influenced the design of systems like Linux.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: TOMOYO Linux Target entity description: TOMOYO Linux is a security-focused enhancement for the Linux kernel that provides mandatory access control through fine-grained, policy-based restrictions on system behavior.
-
A.
Kernel Self Protection Project
The Kernel Self Protection Project is a security-focused initiative aimed at hardening the Linux kernel against vulnerabilities and exploitation through proactive defensive features and development practices.
-
B.
Unbreakable Enterprise Kernel
Unbreakable Enterprise Kernel is Oracle’s optimized, enterprise-grade Linux kernel designed to deliver enhanced performance, stability, and support for Oracle workloads and cloud environments.
-
C.
Luks
Luks is the surname of American realist painter and Ashcan School member George Luks.
-
D.
Encrypting File System
Encrypting File System is a Windows feature that provides transparent file-level encryption to protect data stored on NTFS volumes.
-
E.
MINIX operating system
MINIX operating system is a small, Unix-like, microkernel-based operating system originally created for teaching and research that later influenced the design of systems like Linux.
- F. None of above. chosen
Statements (48)
| Predicate | Object |
|---|---|
| instanceOf |
Linux security module
ⓘ
kernel security enhancement ⓘ mandatory access control system ⓘ |
| basedOn | pathnames ⓘ |
| category |
Linux kernel security
NERFINISHED
ⓘ
access control system ⓘ computer security software ⓘ |
| configuration |
ACL rules
ⓘ
domain definitions ⓘ policy files ⓘ |
| controls |
file access
ⓘ
inter-process communication ⓘ network access ⓘ process behavior ⓘ system behavior ⓘ |
| designedFor |
embedded systems
ⓘ
enterprise systems ⓘ general-purpose Linux distributions ⓘ |
| documentation | online manuals and guides ⓘ |
| enforcement | kernel-level ⓘ |
| feature |
domain-based access control
ⓘ
logging of policy violations ⓘ policy learning ⓘ policy management tools ⓘ profile-based restrictions ⓘ runtime policy updates ⓘ |
| goal |
contain damage from compromised processes
ⓘ
enhance system security ⓘ restrict unauthorized operations ⓘ |
| implements | mandatory access control ⓘ |
| layer | Linux kernel NERFINISHED ⓘ |
| monitors |
IPC-related system calls
ⓘ
file system operations ⓘ network-related system calls ⓘ program execution paths ⓘ |
| operatingSystem | Linux ⓘ |
| policyGranularity | fine-grained ⓘ |
| provides |
fine-grained access control
ⓘ
policy-based access control ⓘ |
| requires | kernel support ⓘ |
| securityModel | whitelisting ⓘ |
| supports |
enforcing mode
ⓘ
learning mode ⓘ per-operation restrictions ⓘ per-path policies ⓘ per-process policies ⓘ permissive mode ⓘ |
| type | LSM-based security framework ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: TOMOYO Linux Description of subject: TOMOYO Linux is a security-focused enhancement for the Linux kernel that provides mandatory access control through fine-grained, policy-based restrictions on system behavior.
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.