Abstract

Rule Set Based Access Control (RSBAC) is a Unix (currently Linux) based security framework, that consists of kernel enhancements and related patches available for recent Linux kernel versions. It controls access to computer resources. The proper use of RSBAC renders many commonly used work-arounds for Unix security superfluous and enhances others. RSBAC offers high granularity and flexibility and can be extended using a well defined API by means of kernel(-like) modules.

In a series of 4 articles Henk Klöpping <henk@rsbac.org> focusses on RSBAC. In this first article an introduction to Unix security issues and a general overview of RSBAC architecture and terminology are presented. The second article describes the various security models which RSBAC supports. The third article deals with RSBAC installation and its initial configuration and presents examples of the practical use of some of the RSBAC models and includes examples of the use of the administrative tools. The fourth article describes the new features that were introduced in version 1.2.0 and instructs the reader how to upgrade existing RSBAC systems.