Add MAC(Mandatory access control) with role in Linux kernel.
The role is can manage permission of user or processor to r/w/x of file, open socket in specific port, and kill or trace processor.
This access control can not controlled by owner(evne if it is root). There is only one user who can control these permissions, and It could be logged on remote.
This project is WIP, but if you want to install and testing this project. This project is based on linux kernel(3.19). So there are so many linux distributions. which support this version. So compile it with default configure with your linux. and install it.
We testing in debian wheezy.