Some weeks ago i posted an article about the signed binaries in Solaris. Every binary in Solaris has an digital signature. It´s the next logical step to execute only signed binaries. And … welll … now there´s a project in progress to give Solaris exactly this capability: Validated Execution. It uses the signature for binaries and BART manifests for securing shell scripts.