First page Back Continue Last page Overview Graphics
Prior Research Prototypes
Distributed Trusted Mach (DTMach)
- Outgrowth of TMach and LOCK OSes
- Integrated flexible MAC framework into Mach OS
Distributed Trusted Operating System (DTOS)
- Improved design and implementation in Mach
- Studies of policies, composability, security, assurability
Flux Advanced Security Kernel (Flask)
- Integrated DTOS security architecture into Flux OS
- Added support for dynamic policies and revocation
Notes:
NSA engaged in research to develop a flexible MAC architecture that could overcome the limitations of traditional MAC. First implemented in DTMach.
DTOS was released to universities and NIST for research. Reports are publically available.
Flask became the name of both the final security architecture as well as the specific implementation in Flux/Fluke.