rfc1108 table
Description
An rfc1108 table contains the mapping between AIX® Trusted Network labels and rfc1108 labels. This mapping is used by the AIX Trusted Network implementation of RIPSO. A sample file containing this table is stored in the /usr/samples/tcpip/rfc1108.example directory.
Each entry in the file must have the following fields. Each field is separated by a "|" from the one preceding it. The entry is ended by the newline character.
| Item | Description |
|---|---|
| index | Tracks the maximum number of the entries and designates an entry number for each entry. |
| rfclable | Specifies the rfc name for the label. These names are specified in RFC1108 that the U.S. Department of Defense published. |
| rfcvalue | Specifies the rfc value corresponding to rfclabel. These values are specified in RFC1108 that the U.S. Department of Defense published. |
| ourlabel | Specifies the classification level that the AIX Trusted Network system uses. The system corresponds to the value of the rfclabel field for the purpose of translation between the RFC1108 labeling system and the local labeling system. Thus, the processing of a packet with the rfclabel field takes place at the corresponding ourlabel field. The specified classification level must be one of the classifications that are specified in the Label Encodings file that the local system uses. |
| valid | Indicates whether datagrams, which is the information transmitted over the TCP/IP network, with labeling as specified previously are accepted or transmitted. This flag is not enforced. A 1 in this field indicates that datagrams labeled as specified in this entry are processed unless other conditions preclude it. This is the default value. A 0 in this field indicates that datagrams labeled as specified in this entry are neither accepted nor transmitted. All other values for this field are not valid. If more than one character is supplied, only the first character is significant. |
Examples
1|top secret|61|TOP SECRET|1Files
| Item | Description |
|---|---|
| /usr/samples/tcpip/rfc1108.example | An example of the rfc1108 ASCII table file. |
| /etc/security/enc/LabelEncodings | The system Label Encodings file. |