TOMOYO Linux

E724150

TOMOYO Linux is a security-focused enhancement for the Linux kernel that provides mandatory access control through fine-grained, policy-based restrictions on system behavior.

All labels observed (2)

Label Occurrences
PaX 1
TOMOYO Linux canonical 1

How this entity was disambiguated

Statements (48)

Predicate Object
instanceOf Linux security module
kernel security enhancement
mandatory access control system
basedOn pathnames
category Linux kernel security NERFINISHED
access control system
computer security software
configuration ACL rules
domain definitions
policy files
controls file access
inter-process communication
network access
process behavior
system behavior
designedFor embedded systems
enterprise systems
general-purpose Linux distributions
documentation online manuals and guides
enforcement kernel-level
feature domain-based access control
logging of policy violations
policy learning
policy management tools
profile-based restrictions
runtime policy updates
goal contain damage from compromised processes
enhance system security
restrict unauthorized operations
implements mandatory access control
layer Linux kernel NERFINISHED
monitors IPC-related system calls
file system operations
network-related system calls
program execution paths
operatingSystem Linux
policyGranularity fine-grained
provides fine-grained access control
policy-based access control
requires kernel support
securityModel whitelisting
supports enforcing mode
learning mode
per-operation restrictions
per-path policies
per-process policies
permissive mode
type LSM-based security framework

How these facts were elicited

Referenced by (2)

Full triples — surface form annotated when it differs from this entity's canonical label.

Linux Security Modules API usedBy TOMOYO Linux
Kernel Self Protection Project relatedTo TOMOYO Linux
this entity surface form: PaX