Rainbow: Difference between revisions
Jump to navigation
Jump to search
m (Initial writeup) |
(hmm) |
||
| Line 1: | Line 1: | ||
Rainbow is the implementation of the [[Bitfrost]] security specification. |
Rainbow is the implementation of the [[Bitfrost]] security specification. Rai ybow: |
||
* Negotiates launching activities and creating a secure, minimal environment for their operation inside a 'Container', a way of isolating one activity from another. This includes limiting the scope of Filesystem, Network Access and CPU time that each activity has access to. |
* Negotiates launching activities and creating a secure, minimal environment for their operation inside a 'Container', a way of isolating one activity from another. This includes limiting the scope of Filesystem, Network Access and CPU time that each activity has access to. |
||
* Creates a means for Updates to happen in a reliable and secure way. |
* Creates a means for Updates to happen in a reliable and secure way. |
||
* Provides interfaces to VServer and other libraries that make the above possible |
* Provides interfaces to VServer and other libraries that make the above possible |
||
== example documentation == |
|||
<gitembed>security||rainbow/README.txt||600||600</gitembed> |
|||
Revision as of 22:59, 28 August 2007
Rainbow is the implementation of the Bitfrost security specification. Rai ybow:
- Negotiates launching activities and creating a secure, minimal environment for their operation inside a 'Container', a way of isolating one activity from another. This includes limiting the scope of Filesystem, Network Access and CPU time that each activity has access to.
- Creates a means for Updates to happen in a reliable and secure way.
- Provides interfaces to VServer and other libraries that make the above possible
example documentation
<gitembed>security||rainbow/README.txt||600||600</gitembed>