Information Flow Query and Verification for Security Policy of Security-Enhanced Linux

  • Yi-Ming Chen
  • Yung-Wei Kao
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4266)


This paper presents a Colored Petri Nets (CPN) approach to analyze the information flow in the policy file of Security-Enhanced Linux (SELinux). The SELinux access control decisions are based on a security policy file that contains several thousands of security rules. It becomes a challenge for policy administrator to determine whether the modification of the security policy file conforms to the pre-specified security goals. To address this issue, this paper proposes a formal information flow model for SELinux security policy file, and presents a simple query language to help administrators to express the expected/unexpected information flow. We developed a method to transform the SELinux policy and security goal into Policy CPN Diagram and Query CPN Diagram. A tool named SEAnalyzer that can automatically verify the SELinux policy has been developed and two application examples of this tool will be presented in the context.


Colored Petri Nets information flow SELinux security policy 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Loscocco, P.A., Smalley, S.D., Muckelbauer, P.A., Taylor, R.C., Turner, S.J., Farrell, J.F.: The Inevitability of Failure: The Flawed Assumption of Security in Modern Computing Environments. In: Proceedings of the 21st National Information Systems Security Conference, pp. 303–314 (1998)Google Scholar
  2. 2.
  3. 3.
  4. 4.
    Loscocco, P.A., Smalley, S.D.: Meeting critical security objectives with Security- Enhanced Linux. In: Proceedings of the 2001 Ottawa Linux Symposium (2001)Google Scholar
  5. 5.
    Archer, M., Leonard, E., Pradella, M.: Towards a Methodology and tool for the Analysis of Security-Enhanced Linux Security Policies. NRL Memorandum Report NRL/MR/5540- 02-8629 (2002)Google Scholar
  6. 6.
    Jaeger, T., Sailer, R., Zhang, X.: Analyzing integrity protection in the SELinux example policy. In: Proc. USENIX Security Symposium, pp. 59–74 (2003)Google Scholar
  7. 7.
    Jaeger, T., Sailer, R., Zhang, X.: Resolving Constraint Conflicts. In: Proceedings of the 2004 ACM Symposium on Access Control Models and Technologies (2004)Google Scholar
  8. 8.
    Guttman, J.D., Herzog, A.L., Ramsdell, J.D.: Information Flow in Operating Systems: Eager Formal Methods. In: Workshop on Issues in the Theory of Security (WITS 2003) (2003)Google Scholar
  9. 9.
    Guttman, J.D., Herzog, A.L., Ramsdell, J.D.: SLAT: Information Flow Analysis in Security Enhanced Linux. Included in the SLAT distribution (2005), available from:
  10. 10.
    Sarna-Starosta, B., Stoller, S.D.: Policy Analysis for security-Enhanced Linux. In: Workshop on Issues in the Theory of Security (WITS) (2004)Google Scholar
  11. 11.
    Zanin, G., Mancini, L.V.: Towards a Formal Model for Security Policies Specification and Validation in the SELinux System. In: The Proceeding of SACMAT 2004, Yorktown Heights, New York, USA, pp. 136–145 (2004)Google Scholar
  12. 12.
    Jensen, K.: Coloured Petri Nets. Basic Concepts, Analysis Methods and Practical Use. Basic Concepts. EATCS Monographs on Theoretical Computer Science, vol. 1, pp. 1–234. Springer, Heidelberg (1992)zbMATHGoogle Scholar
  13. 13.
    Loscocco, P.A., Smalley, S.D.: Integrating Flexible Support for Security Policies into the Linux Operating System. In: USENIX Annual Technical Conference (2001)Google Scholar
  14. 14.
    Mccarty, B.: SELinux NSA’s Open Source Security Enhanced Linux, 256 pages. O’Reilly, Sebastopol, ISBN: 0-596-00716-7Google Scholar
  15. 15.
    Stubblebine, T.: Regular Expression Pocket Reference, p. 112. O’Reilly, Sebastopol (2003), ISBN: 0-596-00415-X Google Scholar
  16. 16.
    Gutnik, G., Kaminka, G.A.: Representing Conversations for Scalable Overhearing. JAIR 25, 349–387 (2006)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • Yi-Ming Chen
    • 1
  • Yung-Wei Kao
    • 1
  1. 1.Department of Information ManagementNational Central UniversityJoungliTaiwan, ROC

Personalised recommendations