Title :
Enhanced Availability and Security by Rate Control Using Extended Policy Framework in SELinux
Author :
Shinde, Pravin ; Sharma, Priyanka ; Guntupalli, Srinivas
Author_Institution :
CDAC, Mumbai
Abstract :
In this paper we discussed an extension to security enhanced Linux (SELinux) to build a more available and secure system that has the capability to contain and mitigate denial of service (DoS) attacks by exercising rate control over resource usage. We presented an extended structure to compliment Mandatory Access Control policies of SELinux. Using this extension a system´s resource usage by various entities can be kept under control, leading to a more available system.
Keywords :
Linux; resource allocation; security of data; SELinux; denial of service attacks; extended policy framework; mandatory access control policy; rate control; resource usage; secure system; security enhanced Linux; Access control; Availability; Computer crime; Control systems; Floods; Information security; Linux; Monitoring; Protection; Protocols;
Conference_Titel :
Information Assurance and Security, 2007. IAS 2007. Third International Symposium on
Conference_Location :
Manchester
Print_ISBN :
0-7695-2876-7
Electronic_ISBN :
978-0-7695-2876-2
DOI :
10.1109/IAS.2007.17