Institutional Repository
| secguard: secure and practical integrity protection model for operating systems | |
| Zhai Ennan; Shen Qingni; Wang Yonggang; Yang Tao; Ding Liping; Qing Sihan | |
| 2011 | |
| Conference Name | 13th Asia-Pacific Conference on Web Technology, APWeb 2011 |
| Source | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) |
| Pages | 370-375 |
| Conference Date | April 18, |
| Conference Place | Beijing, China |
| Indexed Type | EI |
| Publish Place | Germany |
| ISSN | 3029743 |
| ISBN | 9783642202902 |
| Department | (1) School of Software and Microelectronics, Peking University, China; (2) Institute of Software, Chinese Academy of Sciences, China; (3) MoE Key Lab of Network and Software Assurance, Peking University, China; (4) Network and Information Security Lab, Institute of Software, Peking University, China |
| English Abstract | Host compromise is a serious security problem for operating systems. Most previous solutions based on integrity protection models are difficult to use; on the other hand, usable integrity protection models can only provide limited protection. This paper presents SecGuard, a secure and practical integrity protection model. To ensure the security of systems, SecGuard provides provable guarantees for operating systems to defend against three categories of threats: network-based threat, IPC communication threat and contaminative file threat. To ensure practicability, SecGuard introduces several novel techniques. For example, SecGuard leverages the information of existing discretionary access control information to initialize integrity labels for subjects and objects in the system. We developed the prototype system of SecGuard based on Linux Security Modules framework (LSM), and evaluated the security and practicability of SecGuard. © 2011 Springer-Verlag Berlin Heidelberg. |
| Keyword | Computer Operating Systems Network Security |
| Content Type | 会议论文 |
| URI | http://ir.iscas.ac.cn/handle/311060/14233 |
| Collection | 基础软件国家工程研究中心 |
| Recommended Citation GB/T 7714 | Zhai Ennan,Shen Qingni,Wang Yonggang,et al. secguard: secure and practical integrity protection model for operating systems[C]. Germany,2011:370-375. |
| Files in This Item: | ||||||
| File Name/Size | DocType | Version | Access | License | ||
| secguard secure and (203KB) | 开放获取 | -- | Application Full Text | |||
Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.
Edit Comment