Flask: An Operating System Security Architecture - http://www.cs.utah.edu/flux/fluke/html/flask.html
The Flask operating system security architecture provides flexible support for security policies. The architecture has previously been implemented in two research operating systems, Mach and Fluke, and is now being implemented in the Linux kernel. |
http://www.ksplice.com/ - http://www.ksplice.com/
Provides Linux kernel extensions which allow system administrators to apply security patches to a running kernel without having to reboot the system. |
Linux Security Protection System (LinSec) - http://www.linsec.org/
The main aim of the project is to introduce Mandatory Access Control (MAC) mechanism into Linux, based on capabilities, filesystem access domains, IP labeling lists and socket access control. |
Rule Set Based Access Control (RSBAC) for Linux - http://www.rsbac.org/
RSBAC is another MAC kernel security enhancement project for Linux. The standard package includes a range of access control models like MAC, RC, ACL. Additionally, the runtime registration facility (REG) makes it easy to implement your own access control model as a kernel module and get it registered at runtime. |
Security ACLs for Linux kernel - http://acl.bestbits.at/
The site provides a patch for extended attributes and access control lists for Linux kernel. |