• DocumentCode
    2428998
  • Title

    Adaptive access policy for the Linux kernel

  • Author

    Horie, Takashi ; Harada, Toshiharu ; Tanaka, Kazuo

  • Author_Institution
    NTT Data Corp., Tokyo, Japan
  • fYear
    2005
  • fDate
    31 Jan.-4 Feb. 2005
  • Firstpage
    82
  • Lastpage
    88
  • Abstract
    SELinux, that has stricter access control mechanisms than traditional UNIX/Linux, is thought to be an effective solution for server-side fortification. Some of SELinux\´s behavior toward actual incidents shows its potential as an intrusion detection system (IDS), but, still, it is nothing more than a logging facility. Further improvements are needed for SELinux, not only to detect incidents but also to deal with them. This paper describes the autonomous defense functionality called "Linux Kernel based IDS" as well as its implementation.
  • Keywords
    Linux; authorisation; client-server systems; operating system kernels; Linux kernel; SELinux; adaptive access policy; intrusion detection system; server-side fortification; Access control; Information security; Internet; Intrusion detection; Kernel; Linux; National security; Permission; Prototypes; Research and development;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Applications and the Internet, 2005. Proceedings. The 2005 Symposium on
  • Print_ISBN
    0-7695-2262-9
  • Type

    conf

  • DOI
    10.1109/SAINT.2005.11
  • Filename
    1386100
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2428998