Title :
A Network Safety-Defense Mechanism with the Linux Security Module
Author :
Tsai, Jichiang ; Feng, Chung-Hsin ; Tsai, Chuyuan
Author_Institution :
Dept. of Electr. Eng., Nat. Chung-Hsing Univ., Taichung
Abstract :
With the increasing popularity of the Internet, more and more applications are extensively exploited on it. In the wake of that, malicious network behavior also occurs more and more frequently. Consequently, a network system must be enhanced to prevent attacks and invasions. Moreover, we usually use a gateway to connect network devices to share resources among them. The security mechanism of a gateway thus becomes an important part for network robustness. In this paper, we present a network security-defense mechanism developed with the Linux Security Modules (LSM) to prohibit ordinary invasive actions, like the Backdoor, Worm, Port Scan, and SYN Flooding attacks. Such a mechanism can be employed on a network gateway to nullify illegal network actions to improve its security
Keywords :
Internet; Linux; internetworking; security of data; telecommunication security; Internet; LSM; Linux security module; gateway; network safety-defense mechanism; Computer worms; IP networks; Information security; Internet; Kernel; Linux; Operating systems; Power system security; Robustness; Sockets; Defense Mechanisms; Gateways; Linux Security Modules; Network Security;
Conference_Titel :
TENCON 2006. 2006 IEEE Region 10 Conference
Conference_Location :
Hong Kong
Print_ISBN :
1-4244-0548-3
Electronic_ISBN :
1-4244-0549-1
DOI :
10.1109/TENCON.2006.343980
