1.1 Feature

The feature of SPDL is hiding labels, and reducing number of permissions.

• Hiding labels
  SPDL does not use types to configure access control. You can use file name and port number to configure.
• Reduce number of permissions
  There are too many permissions in SELinux, so SPDL reduces number of permissions by removing permissions and integrating permissions. Permissions that does not have security impact is removed. Permission removal is implemented by allowing that permission to all domains. Integrating permission means, treating set of permissions as one permission. For example r permission for file integrates SELinux permissions related to file read. For detail of what kind of permissions are removed, integrated see Integrated/unsupported permissions in Simplified Policy in http://seedit.sourceforge.net/doc/permission_integrate/.