In an uncharacteristic move, the U.S. National Security Agency (NSA) recently released a security-enhanced version of Linux -- code and all -- to the open source community. Part 2 of this developerWorks exclusive delves deeper into the code, dissecting how the . . .
In an uncharacteristic move, the U.S. National Security Agency (NSA) recently released a security-enhanced version of Linux -- code and all -- to the open source community. Part 2 of this developerWorks exclusive delves deeper into the code, dissecting how the security_av is computed and examining how other SE Linux security features are invoked.

Let's take a look at some of the C code in the SE Linux distribution to check out the details of the security enhancements' implementation.

Let's start with headers. Some of the basic Flask types and constants are in the header file found by the distribution directory include/linux/flask/flask types.h., and are excerpted in the following:

The link for this article located at IBM is no longer available.