Preface

Labels, clearances, and handling instructions are used to protect information on a system that is configured with Trusted Extensions software. The components of labels, clearances, and handling instructions are specified in the label_encodings file. This guide provides background information for creating or modifying this file. This guide provides examples, and helps you create and install a label_encodings file that is appropriate for your site.

Who Should Use This Guide

This guide is for security administrators. Security administrators are responsible for defining the organization's labels. Some security administrators are also responsible for implementing the labels. This book is used for both defining and implementing labels.

Note - Even though Trusted Extensions can be configured with no visible labels, labels are always being used. Labels provide mandatory access control (MAC), and MAC is always enforced. Therefore, the site's label_encodings file must be in place before any user or role accounts are created.

Trusted Extensions installs a default label_encodings file. The security administrator must provide a file that is appropriate for the site.

The security administrator who implements the labels must be familiar with Solaris Operating System (Solaris OS) administration. The necessary level of knowledge can be acquired through training and documentation. For details, see Documentation, Support, and Training.

How the Solaris Trusted Extensions Guides Are Organized

The following table lists the topics that are covered in the Solaris Trusted Extensions gui des and the audience for each guide. For the Trusted Extensions man pages, see Appendix D, List of Trusted Extensions Man Pages, in Oracle Solaris Trusted Extensions Configuration and Administration.

Title of Guide	Topics	Audience
Oracle Solaris Trusted Extensions User Guide	Describes the basic features of Solaris Trusted Extensions. This book contains a glossary.	End users, administrators, developers
Oracle Solaris Trusted Extensions Configuration and Administration	Part I describes how to prepare for, enable, and initially configure Trusted Extensions. Part II describes how to administer a Trusted Extensions system. This book contains a glossary.	Administrators, developers
Oracle Solaris Trusted Extensions Developer’s Guide	Describes how to develop applications with Solaris Trusted Extensions.	Developers, administrators
Oracle Solaris Trusted Extensions Label Administration	Provides information about how to specify label components in the label encodings file.	Administrators
Compartmented Mode Workstation Labeling: Encodings Format	Describes the syntax used in the label encodings file. The syntax enforces the various rules for well-formed labels for a system.	Administrators

How This Guide Is Organized

Chapter 1, Labels in Trusted Extensions Software (Overview) discusses labels-related concepts for the security administrator who prepares the site's label_encodings file.
Chapter 2, Planning Labels in Trusted Extensions(Tasks) provides planning steps for the security administrator who prepares the site's label_encodings file. This chapter also describes the encodings files that Trusted Extensions provides.
Chapter 3, Creating a Label Encodings File (Tasks) describes how to create, customize, and verify the label_encodings file.
Chapter 4, Labeling Printer Output (Tasks) describes the labels and handling instructions on printer output and provides procedures for modifying them.
Chapter 5, Customizing the LOCAL DEFINITIONS Section (Tasks) describes the optional LOCAL DEFINITIONS section of the label_encodings file.
Chapter 6, Planning an Organization's Encodings File (Example) models how a site analyzes its label requirements and creates a label_encodings file.
Appendix A, Encodings File for SecCompany (Example) contains the example of the label_encodings file from Chapter 6, Planning an Organization's Encodings File (Example).

Documentation, Support, and Training

See the following web sites for additional resources:

Documentation
Support
Training – Click the Sun link in the left navigation bar.

Oracle Software Resources

Oracle Technology Network offers a range of resources related to Oracle software:

Discuss technical problems and solutions on the Discussion Forums.
Get hands-on step-by-step tutorials with Oracle By Example.
Download Sample Code.

Typographic Conventions

The following table describes the typographic conventions that are used in this book.

Table P-1 Typographic Conventions

Typeface	Meaning	Example
`AaBbCc123`	The names of commands, files, and directories, and onscreen computer output	Edit your `.login` file. Use `ls -a` to list all files. `machine_name% you have mail.`
`AaBbCc123`	What you type, contrasted with onscreen computer output	`machine_name%` `su` `Password:`
`aabbcc123`	Placeholder: replace with a real name or value	The command to remove a file is `rm` `filename`.
AaBbCc123	Book titles, new terms, and terms to be emphasized	Read Chapter 6 in the User's Guide. A cache is a copy that is stored locally. Do not save the file. Note: Some emphasized items appear bold online.

Shell Prompts in Command Examples

The following table shows the default UNIX system prompt and superuser prompt for shells that are included in the Oracle Solaris OS. Note that the default system prompt that is displayed in command examples varies, depending on the Oracle Solaris release.

Table P-2 Shell Prompts

Shell	Prompt
Bash shell, Korn shell, and Bourne shell	`$`
Bash shell, Korn shell, and Bourne shell for superuser	`#`
C shell	`machine_name%`
C shell for superuser	`machine_name#`

Skip Navigation Links
Exit Print View
	Oracle Solaris Trusted Extensions Label Administration Oracle Solaris 11 Express 11/10