Re: Per-Processor Data Page

Andi Kleen (ak@suse.de)
Fri, 10 Dec 1999 02:41:39 +0100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Andrei Pitis: "Re: Toshiba kbd patch"
Previous message: nathan.zook@amd.com: "Stray thought: 64G Support? Or 16T Ready?"

On Thu, Dec 09, 1999 at 04:32:31PM -0600, Bret Indrelee wrote:
> If processes can get a highly accurate time value from some sort of global
> clock, it allows a pair of processes to create a covert channel for passing
> information. The less secure program monitors the time variences of the
> high-security program in order to get information about or from them.

Linux simply does not support real compartmentation and probably never will.
It only makes sense on mainframes anyways, in the PC age you simply buy another
box and separate them with a 10 cm gap of air (patent pending) security border.
Complicating the OS is simply not worth it.

-Andi

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrei Pitis: "Re: Toshiba kbd patch"
Previous message: nathan.zook@amd.com: "Stray thought: 64G Support? Or 16T Ready?"