| LOMAC |
LOMAC is a dynamically-loadable security module for Free UNIX kernels that uses Low Water-Mark Mandatory Access
Control (MAC) to protect the integrity of processes and data from viruses, Trojan horses, malicious remote users,
and compromised network server daemons. LOMAC is designed for compatibility and ease of use for typical user.
|
| Generic Software Wrappers |
General Software Wrappers architecture is similar to Kernel Hypervisors but more advanced because of using
WDL (Wrapper Definition Language). Windows NT support declared but just user mode DLLs hooks so far
(useless for security purposes).
|
| Medusa DS9 |
ZP Security Framework for implementing MAC policies. At actual state supports just Linux.
|
| Linux Security Modules |
The LSM project provides a lightweight, general purpose framework for access control that
allows access control models to be implemented as loadable kernel modules.
|
Microsoft Next-Generation
Secure Computer Base |
NGSCB previously known as Palladium - Microsoft secure platform project.
|
| Trusted Computing Group |
TCPA successor, Industry standard specifications for trusted computing
|
| LIDS |
Linux implementation of mandatory access control and IDS features |
| SecMod |
Mandatory access control |
| RSBAC |
Linux Rule Set Based Access Control project |
| Virtual eXecuting Environment |
VXE syscall rules to produce restricted environment.
|
| SELinux |
Linux implementation of the Flask
with DTE and role based policies |
| Enforcer |
Linux implementation of run-time executables integrity checker based on TCPA |
| Systrace |
Security policies based on system calls control |
| SubDomain |
Linux kernel patch implementing programs confinement |
| Domain and Type Enforcement |
Linux implementation of Domain and Type Enforcement |
|
| SurfinShield |
Windows behavior-based security |
|
| Entercept |
Behavior-based with specific attack prevention |
|
| DSE Sandbox |
NT behavior checker sandbox |
|
