Based on SELinux mandatory access control in database management system MySQL
Prikladnaya Diskretnaya Matematika. Supplement, no. 5 (2012), pp. 77-79
Cet article a éte moissonné depuis la source Math-Net.Ru
The main steps for addition of mandatory access control to relational database management system (RDBMS) MySQL are proposed on the base of SELinux. These steps are the following: to set security contexts for all entities of the RDBMS MySQL, to create the security policy module, to implement the interaction of SELinux system and RDBMS MySQL hook functions, and to replace (fully or partly) functions realizing discretionary access control in RDBMS with hook functions.
@article{PDMA_2012_5_a39,
author = {N. O. Tkachenko},
title = {Based on {SELinux} mandatory access control in database management system {MySQL}},
journal = {Prikladnaya Diskretnaya Matematika. Supplement},
pages = {77--79},
year = {2012},
number = {5},
language = {ru},
url = {http://geodesic.mathdoc.fr/item/PDMA_2012_5_a39/}
}
N. O. Tkachenko. Based on SELinux mandatory access control in database management system MySQL. Prikladnaya Diskretnaya Matematika. Supplement, no. 5 (2012), pp. 77-79. http://geodesic.mathdoc.fr/item/PDMA_2012_5_a39/
[1] Hinz S., DuBois P., Stephens J., et al., MySQL 5.5 Reference Manual, [Elektronnyi resurs]. Rezhim dostupa: http://dev.mysql.com/doc/refman/5.5/en/index.html
[2] Haines R., The SELinux Notebook – The Foundations, 2nd Edition, [Elektronnyi resurs]. Rezhim dostupa: http://www.freetechbooks.com/efiles/selinuxnotebook/The_SELinux_Notebook_Volume_1_The_Foundations.pdf
[3] Smalley S., Configuring the SELinux Policy, [Elektronnyi resurs]. Rezhim dostupa: http://www.nsa.gov/research/_files/selinux/papers/policy2.pdf
[4] Loscocco P. A., Smalley S. D., Meeting Critical Security Objectives with Security-Enhanced Linux, [Elektronnyi resurs]. Rezhim dostupa: http://www.nsa.gov/research/_files/selinux/papers/ottawa01.pdf