Originally posted here by catch
[B]This should REALLY concern you.


NSA: "Yay we made a neat kernel patch, we shall dub it SE Linux. It's too bad this SE Linux is just a research prototype, but it served our needs."
NSA SELinux
The results of several previous research projects in this area have been incorporated in a security-enhanced Linux system.
So, previous research projects. Everything starts out as research but matures in time. It's the scientific process at work. But the [sometimes good] folks at NSA wanted to make sure it all works well together so they've worked on it a bit. It's reached a level of maturity that got it into the kernel tree.

Now I understand that neither SELinux nor other Linux 'things' provide what you need... and that's fine. You have two options:

1. stick with the proprietary things considering that you trust them [and aren't particularly obsessed by conspiracy theories]

2. start a project to implement what you need [for Linux and open source it]

In terms of the other thread and your TCB path requirements, I undersand you were looking for a finite product rather than the possibility of developing one. But that's there and this is here =)

P.S. Not to show too much zealotry, I'm trying to play a bit of devil's advocate about some things for the sake of discussion and more and more arguments being brought to the table... in the end that's what makes a good debate.

cheers!