TWiki>
Repository Web>WeeklyPapersFall07>ApplicationSecuritySupportintheOperatingSystem (05 Sep 2007, AndrewBlaich)EditAttach
Repository Web>WeeklyPapersFall07>ApplicationSecuritySupportintheOperatingSystem (05 Sep 2007, AndrewBlaich)EditAttachApplication Security Support in the Operating System Kernel
Authors: Manigandan Radhakrishnan and Jon A. SolworthComplete Citation
Manigandan Radhakrishnan and Jon A. Solworth, Application Security Support in the Operating System Kernel, ACM Conference on Information, Computer and Communication Security (AsiaCCS? ), Taipei, Taiwan, March 2006.Abstract
Application security is typically coded in the application. In kernelSec, we are investigating mechanisms to implement application security in an operating system kernel. The mechanisms are oriented towards providing authorization properties, and this goal drives the design of permissions and protection mechanisms. The resulting system is dynamic, allowing the set of per- missions for a program to evolve during program execution. This reduces the need for users and applications to be aware of protection mechanism, since the protection mechanism provides the user with more freedom in how they do things. We explore these properties through a number of examples. KernelSec? also supports a group (role) mechanism which can define constrained groups enabling groups which only grow, only shrink, are constant, are mutually exclusive with other groups, and which allow inheritance. Moreover groups are used to regulate group membership and allow group administration by non-privileged users.Annotations
Using an LSM and a daemon program the authors created a user authorization system that has the notion of SecurityCards? for permissions. The work is incredibly similar to RBAC and SELINUX, which the users acknowledge, but argue that their mechanisms are simpler, more natural, and more efficient. The authors make a good point, "System-wide security cannot be provided at the application level, and hence can only be provided in the operating system." kernelSec is implemented at two levels:- Level 1: system specifications level, supports DAC, MAC, and administrative controls and has decidable authorization properties.
- Level 2: enforcement engine, using SecurityCards? , provides the run-time engine which implements the specified protections. Notion of group sets with group permissions. Allow permissions to change based on program actions. Such as: reading a classified file, now the program cannot write to public files.
Edit | Attach | Print version | History: r2 < r1 | Backlinks | Raw View | More topic actions
Topic revision: r2 - 05 Sep 2007 - 15:20:32 - AndrewBlaich
Repository Web
Create New Topic
Index
Search
Changes
Notifications
Statistics
Preferences
Edu |
|
Copyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Send feedback