Tuesday Jan 16, 2007

For as long as technology innovations have occurred, higher-end technologies have eventually made their way into the mainstream, allowing wider groups of users to access functionality formerly only available to a select few.

Such is the case with security features in Solaris 10, now boasting capabilities formerly only available in Trusted Solaris versions of the operating system. VP of Systems Engineering Hal Stern welcomes Darren Moffat, Sr. Staff Engineer, and Glenn Brunette, distinguished engineer, to this edition of Innovating@Sun to discuss important security features of Solaris 10 that further enable enterprises to drive their business forward safely while allowing for a more open interchange with their customers and partners. Key discussion points include:

  • Least privilege boasting 100% backwards compatibility
  • Labelling to control flow of data
  • Role-based Access Control (RBAC)
  • Putting these technologies to use as larger volumes of content are posted back to your site
  • Managing the distinction between your firewall and the outside world
  • Sharing different classifications of data
  • Zoning and managing virtualized technologies

    The trio also discuss cool things imminently on the horizon such as:

  • Cryptographically signed binaries
  • Solving the issue of security of data at rest with encryption support added to ZFS file systems
  • Rules of engagement for minimization (now available)
  • Solaris security recommendations

    Links:



    Show Transcript
    Solaris 10 Security website
    Darren Moffat's Blog
    Glenn Brunette's Blog
    ZFS Crypto Project
    lofi Crypto
    OpenSolaris Security Community



    • Posted at 05:09AM Jan 16, 2007 by Laura Ventura in Sun   [permalink]    

    Like this post? Then how about sharing it? Or what about subscribing with your feed reader? Subscribe


    blog comments powered by Disqus

    Comments:

    Is there an rss for this "podcast"? i.e. something I can use in iTunes? I looked in the iTunes music store but could only find a very outdated version of this podcast - a direct link would be appreciated.

    Posted by mark on January 16, 2007 at 07:47 AM PST #

    Thank you for your feedback. All the Innovating@Sun podcasts will be available on iTunes shortly.

    Posted by 192.18.45.134 on January 19, 2007 at 11:24 AM PST #

    Wow there are companies that care about there security!

    Posted by Levi Gross on January 28, 2007 at 08:24 PM PST #

    Nice interview - thanks! I'm looking forward to an RSS feed of the audio too - in the meantime, I read the transcript. I noticed a typo in there I think - page 4, 4th paragraph "VFS filesystem" here should read "ZFS filesystem". The projects Darren's talking about are zfs-crypto and loficc.

    Posted by Tim Foster on January 29, 2007 at 06:45 AM PST #

    The audio should be posted on iTunes shortly. Thx for catching the typo. It's fixed now.

    Posted by Laura Ventura on January 29, 2007 at 09:58 AM PST #





    Tags


    This blog's tags only: No tags defined
    All Sun blogs' tags: No tags defined
    Technorati directory: No tags defined
    Del.icio.us bookmarks: No tags defined
    IceRocket directory: No tags defined
    Fav.or.it bookmarks: No tags defined