     |
Conclusion & discussion
Main contributions:
A Document Type Definition of the security models description has been designed
Two transformations of the XML representation to the most advanced security projects (NSA SELinux, Medusa) have been implemented
The proposed XML security model description allows:
Integration of the security policies into Linux distributions
Easy portability of the policy to another Unix OS
Easy extensibility of the XML representation for new security models
Future work:
NSA SELinux developers have shown interest in continuation and extending of the XML RBAC and DTE description