2004-11-23 14:44:53

by Kristian Sørensen

[permalink] [raw]
Subject: Umbrella-0.5.1 stable released

Hi all!

We are pleased to inform you that Umbrella 0.5.1 is now released. This is a
very stable release, which has been tested on our workstations for 6+ days
continously.

Get the release here:
http://prdownloads.sourceforge.net/umbrella/umbrella-0.5.1.tar.bz2?download

The strategy of the further development of Umbrella is to have
* STABLE and well tested Umbrella as patches
* UNSTABLE bleeding edge technology in the CVS module umbrella-devel


We have lots of new stuff and optimizations in the CVS, which slowley will be
applied and tested before getting realeased as patches. Currently we have
these in the CVS:
* New, small and efficient bit vector
* New datastructure for storing restrictions
See this thread for details:
http://sourceforge.net/mailarchive/forum.php?thread_id=5886152&forum_id=42079
* Restrictions on process signaling
* Authentication of binaries (still under development for the 0.6 release)


Best regards,
Kristian S?rensen.


--
Kristian S?rensen
- The Umbrella Project -- Security for Consumer Electronics
http://umbrella.sourceforge.net

E-mail: [email protected], Phone: +45 29723816


2004-11-23 14:49:13

by Jens Axboe

[permalink] [raw]
Subject: Re: Umbrella-0.5.1 stable released

On Tue, Nov 23 2004, Kristian S?rensen wrote:
> Hi all!
>
> We are pleased to inform you that Umbrella 0.5.1 is now released. This is a
> very stable release, which has been tested on our workstations for 6+ days
> continously.
>
> Get the release here:
> http://prdownloads.sourceforge.net/umbrella/umbrella-0.5.1.tar.bz2?download
>
> The strategy of the further development of Umbrella is to have
> * STABLE and well tested Umbrella as patches
> * UNSTABLE bleeding edge technology in the CVS module umbrella-devel
>
>
> We have lots of new stuff and optimizations in the CVS, which slowley will be
> applied and tested before getting realeased as patches. Currently we have
> these in the CVS:
> * New, small and efficient bit vector
> * New datastructure for storing restrictions
> See this thread for details:
> http://sourceforge.net/mailarchive/forum.php?thread_id=5886152&forum_id=42079
> * Restrictions on process signaling
> * Authentication of binaries (still under development for the 0.6 release)

And umbrella is?

--
Jens Axboe

2004-11-23 15:01:49

by Simon Burke

[permalink] [raw]
Subject: Re: Umbrella-0.5.1 stable released

On Tue, 23 Nov 2004 15:48:13 +0100, Jens Axboe <[email protected]> wrote:
> On Tue, Nov 23 2004, Kristian S?rensen wrote:
> > Hi all!
> >
> > We are pleased to inform you that Umbrella 0.5.1 is now released. This is a
> > very stable release, which has been tested on our workstations for 6+ days
> > continously.
> >
> > Get the release here:
> > http://prdownloads.sourceforge.net/umbrella/umbrella-0.5.1.tar.bz2?download
> >
> > The strategy of the further development of Umbrella is to have
> > * STABLE and well tested Umbrella as patches
> > * UNSTABLE bleeding edge technology in the CVS module umbrella-devel
> >
> >
> > We have lots of new stuff and optimizations in the CVS, which slowley will be
> > applied and tested before getting realeased as patches. Currently we have
> > these in the CVS:
> > * New, small and efficient bit vector
> > * New datastructure for storing restrictions
> > See this thread for details:
> > http://sourceforge.net/mailarchive/forum.php?thread_id=5886152&forum_id=42079
> > * Restrictions on process signaling
> > * Authentication of binaries (still under development for the 0.6 release)
>
> And umbrella is?
>
Umbrella for handhelds implements a combination of process based
mandatory access control (MAC) and authentication of files for Linux
on top of the Linux Security Modules framework. The MAC scheme is
enforced by a set of restrictions for each process.

*apparently* (i just copied out the sourceforge description).

--
Theres no place like ::1

Thanks,
SimonB

2004-11-23 15:04:40

by Kristian Sørensen

[permalink] [raw]
Subject: Re: Umbrella-0.5.1 stable released

On Tuesday 23 November 2004 15:48, Jens Axboe wrote:
> On Tue, Nov 23 2004, Kristian S?rensen wrote:
> > Hi all!
> >
> > We are pleased to inform you that Umbrella 0.5.1 is now released. This is
> > a very stable release, which has been tested on our workstations for 6+
> > days continously.
> >
> > Get the release here:
> > http://prdownloads.sourceforge.net/umbrella/umbrella-0.5.1.tar.bz2?downlo
> >ad
> >
> > The strategy of the further development of Umbrella is to have
> > * STABLE and well tested Umbrella as patches
> > * UNSTABLE bleeding edge technology in the CVS module umbrella-devel
> >
> >
> > We have lots of new stuff and optimizations in the CVS, which slowley
> > will be applied and tested before getting realeased as patches. Currently
> > we have these in the CVS:
> > * New, small and efficient bit vector
> > * New datastructure for storing restrictions
> > See this thread for details:
> >
> > http://sourceforge.net/mailarchive/forum.php?thread_id=5886152&forum_id=4
> >2079 * Restrictions on process signaling
> > * Authentication of binaries (still under development for the 0.6
> > release)
>
> And umbrella is?
Undskyld - vi plejer at tilf?je en beskrivelse... her kommer den:

Umbrella is a security mechanism which implements a combination of
process-based Mandatory Access Control (MAC) and authentication of files
through Digital Signed Binaries (DSB) for Linux based consumer electronics
devices ranging from mobile phones to settop boxes.

Umbrella is implemented on top of the Linux Security Modules (LSM) framework.
The MAC scheme is enforced by a set of restrictions on each process. This
policy is distributed with a binary in form of execute restrictions (in the
file signature) and within the program, where the developer has the
opportunity of making a "restricted fork" for setting restrictions for new
children.

--
Kristian S?rensen
- The Umbrella Project -- Security for Consumer Electronics
http://umbrella.sourceforge.net

E-mail: [email protected], Phone: +45 29723816

2004-11-23 15:15:27

by Jens Axboe

[permalink] [raw]
Subject: Re: Umbrella-0.5.1 stable released

On Tue, Nov 23 2004, Kristian S?rensen wrote:
> On Tuesday 23 November 2004 15:48, Jens Axboe wrote:
> > On Tue, Nov 23 2004, Kristian S?rensen wrote:
> > > Hi all!
> > >
> > > We are pleased to inform you that Umbrella 0.5.1 is now released. This is
> > > a very stable release, which has been tested on our workstations for 6+
> > > days continously.
> > >
> > > Get the release here:
> > > http://prdownloads.sourceforge.net/umbrella/umbrella-0.5.1.tar.bz2?downlo
> > >ad
> > >
> > > The strategy of the further development of Umbrella is to have
> > > * STABLE and well tested Umbrella as patches
> > > * UNSTABLE bleeding edge technology in the CVS module umbrella-devel
> > >
> > >
> > > We have lots of new stuff and optimizations in the CVS, which slowley
> > > will be applied and tested before getting realeased as patches. Currently
> > > we have these in the CVS:
> > > * New, small and efficient bit vector
> > > * New datastructure for storing restrictions
> > > See this thread for details:
> > >
> > > http://sourceforge.net/mailarchive/forum.php?thread_id=5886152&forum_id=4
> > >2079 * Restrictions on process signaling
> > > * Authentication of binaries (still under development for the 0.6
> > > release)
> >
> > And umbrella is?
> Undskyld - vi plejer at tilf?je en beskrivelse... her kommer den:
>
> Umbrella is a security mechanism which implements a combination of
> process-based Mandatory Access Control (MAC) and authentication of
> files through Digital Signed Binaries (DSB) for Linux based consumer
> electronics devices ranging from mobile phones to settop boxes.
>
> Umbrella is implemented on top of the Linux Security Modules (LSM)
> framework. The MAC scheme is enforced by a set of restrictions on
> each process. This policy is distributed with a binary in form of
> execute restrictions (in the file signature) and within the program,
> where the developer has the opportunity of making a "restricted fork"
> for setting restrictions for new children.

Thanks! Sometimes being lazy does pay off.

--
Jens Axboe