SELinux (Security Enhanced Linux)

http://en.wikipedia.org/wiki/Security-Enhanced_Linux

This is a Linux feature developed by NSA (National Security Agency).  It is not a Linux distribution, but a set of modification that can be applied to Unix-like OS (Operating System) kernels.

http://www.enterprisenetworkingplanet.com/netsecur/article.php/3712891/Tips-for-Taming-SELinux.htm

This is a really good overview article of what SELinux is and is not.  

MAC (Mandatory Access Controls) - enforced by SELinux.

DAC (Discretionary Access Control) - the old way of controlling what privileges a user can set on a file.

The SELinux policy has no concept of an all-powerful superuser.  It looks at things from the perspective of what is allowed.

An Internet-facing server should be locked down very strictly.

FC3 (Fedora Core 3) allows a targeted policy - "allow all, deny as needed."

http://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-selinux.html

Some more good information.  

AVC (access vector cache)

DVN - DataVerse Network

From the iRODS workshop slides.

SHAMON - Sustaining Heritage Access Through Multivalent Archiving

http://ercim-news.ercim.eu/en80/special/shaman

This took a little work to find.  A search of SHAMAN get lost in all the WOW (World of Warcraft) results.

http://www.slideshare.net/DigitalPreservationEurope/shaman-project-hemmje-presentation

Slide show.

http://portal.acm.org/citation.cfm?id=1643899&dl=ACM&coll=DL&CFID=113636349&CFTOKEN=50532023

ACM article.

A digital archive preservation environment.