ia64/xen-unstable

view tools/security/policies/chwall/chwall-security_policy.xml @ 6552:a9873d384da4

Merge.
author adsharma@los-vmm.sc.intel.com
date Thu Aug 25 12:24:48 2005 -0700 (2005-08-25)
parents 112d44270733 fa0754a9f64f
children dfaf788ab18c
line source
1 <?xml version="1.0" encoding="UTF-8"?>
2 <!-- Author: Reiner Sailer, Ray Valdez {sailer,rvaldez}@us.ibm.com -->
3 <!-- This file defines the security policies, which -->
4 <!-- can be enforced by the Xen Access Control Module. -->
5 <!-- Currently: Chinese Wall and Simple Type Enforcement-->
6 <SecurityPolicyDefinition xmlns="http://www.ibm.com"
7 xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
8 xsi:schemaLocation="http://www.ibm.com security_policy.xsd">
9 <PolicyHeader>
10 <Name>chwall-security_policy</Name>
11 <Date>2005-08-10</Date>
12 </PolicyHeader>
13 <!-- -->
14 <!-- example of a chinese wall type definition -->
15 <!-- along with its conflict sets -->
16 <!-- (typse in a confict set are exclusive, i.e. -->
17 <!-- once a Domain with one type of a set is -->
18 <!-- running, no other Domain with another type -->
19 <!-- of the same conflict set can start.) -->
20 <ChineseWall priority="PrimaryPolicyComponent">
21 <ChineseWallTypes>
22 <Type>cw_SystemManagement</Type>
23 <Type>cw_Sensitive</Type>
24 <Type>cw_Isolated</Type>
25 <Type>cw_Distrusted</Type>
26 </ChineseWallTypes>
28 <ConflictSets>
29 <Conflict name="Protection1">
30 <Type>cw_Sensitive</Type>
31 <Type>cw_Distrusted</Type>
32 </Conflict>
33 </ConflictSets>
34 </ChineseWall>
35 </SecurityPolicyDefinition>