| From: | Christopher Browne <cbbrowne(at)acm(dot)org> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: I want to know how to improve the security of postgresql |
| Date: | 2005-12-29 07:35:09 |
| Message-ID: | m3zmmkmk42.fsf@mobile.int.cbbrowne.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
> Hi guys,can you give me some advices about how to improve the
> security of postgresql?
>
> Now I major in the security of postgresql and the destination is
> create a database with security level of B1(TCSEC),what should I do
> now,what program language should I use?
Well, since PostgreSQL is implemented in C, the language you obviously
need to use is... C.
You may want to do more checking as to what you actually want to do.
I don't think the NSA is continuing to do TPEP evaluations, which is
where the C1-C3, B1-B3, A1 levels of the Rainbow books came in.
It would be an unfortunate waste of effort to try to conform to a
standard that is no longer considered of commercial importance.
Remember that TCSEC was published in 1985, and there haven't been any
new evaluations since 2000.
Mind you, there may be some principles to be found in looking at the
evaluation done of Sybase Adaptive Server 6.0.2 against the "Common
Criterion."
--
(format nil "~S(at)~S" "cbbrowne" "acm.org")
http://linuxdatabases.info/info/wp.html
"Never insult seven men, when all you're packin' is a six gun"
--- Zane Gray
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Gregory S. Williamson | 2005-12-29 07:42:19 | Re: Detaching database |
| Previous Message | Bruno Wolff III | 2005-12-29 07:32:01 | Re: Detaching database |