linux-security-module July 2008 archive
Main Archive Page > Month Archives  > linux-security-module archives
linux-security-module: Re: [PATCH 25/28] CRED: Documentation [ve

Re: [PATCH 25/28] CRED: Documentation [ver #5]

From: Dave Quigley <dpquigl_at_nospam>
Date: Mon Jul 07 2008 - 15:38:38 GMT
To: David Howells <dhowells@redhat.com>


On Mon, 2008-07-07 at 16:29 +0100, David Howells wrote:
> Casey Schaufler <casey@schaufler-ca.com> wrote:
>
> > The Orange Book definition:
> > "An active entity, generally in the form of a person, process,
> > or device that causes information to flow among objects or
> > changes the system state. Technically, a process/domain pair."
>
> When you say "process" here, do I take it you mean the Linux kernel's concept
> of a process (or at least a task with a task_struct) rather than some other
> meaning thereof?
>
> David
> --
> To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html

The Orange Book defines a process in it's glossary as:

"A program in execution. It is completely characterized by a single current execution point (represented by the machine state) and address space."

It is worth noting the copy of The Orange Book that I pulled that out of was the 1985 revision. I don't believe there have been any revisions since then but it is important to realize how old these definitions are.

Dave -- To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html