IBM 10 SP1 EAL4 Manuale Utente
6.2.3 Audit record format (AU.3)
Section 5.6.3.2 describes information stored in each audit record.
6.2.4 Audit post-processing (AU.4)
Section 5.15.2 describes audit subsystem utilities provided for post-processing of audit data.
6.3 Discretionary Access Control
6.3.1 General DAC policy (DA.1)
Sections 5.1 and 5.2.2 provides details on the functions that implement general Discretionary Access policy.
6.3.2 Permission bits (DA.2)
Sections 4.1.2.1.2, 4.1.2.1.3, 5.1.2.1, 5.1.5.1, and 5.11.2.1 provide details on calls that perform DAC based on
permission bits.
permission bits.
6.3.3 ACLs (DA.3)
Sections 5.1.2.1, 5.1.5.2, and 5.1.5.2.1 provide details on DAC based on ACLs on file system objects.
6.3.4 DAC: IPC objects (DA.4)
Section 5.3 provides details on DAC for IPC objects.
6.4 Object reuse
6.4.1 Object reuse: file system objects (OR.1)
Section 5.1.2.1 provides details on object reuse handling for data blocks for file system objects.
6.4.2 Object reuse: IPC objects (OR.2)
Sections 5.3.3.2, 5.3.3.3, 5.3.3.4, and 5.3.3.5 provide details on object reuse handling for message queues,
semaphores, and shared-memory segments.
semaphores, and shared-memory segments.
6.4.3 Object reuse: memory objects (OR.3)
6.5 Security management
Section 5.13 provides details about various commands used to perform security management.
219