Title :
Information leakage detection in distributed systems using software agents
Author :
Lee, Yung-Chuan ; Bishop, Stephen ; Okhravi, Hamed ; Rahimi, Shahram
Author_Institution :
Dept. of Comput. Sci., Southern Illinois Univ., Carbondale, IL
fDate :
March 30 2009-April 2 2009
Abstract :
Covert channel attacks utilize shared resources to indirectly transmit sensitive information to unauthorized parties. Current security mechanisms such as SELinux rely on tagging the filesystem with access control properties. However, such mechanisms do not provide strong protection against information laundering via covert channels. Colored Linux , an extension to SELinux, utilizes watermarking algorithms to ldquocolorrdquo the contents of each file with their respective security classification to enhance resistance to information laundering attacks. In this paper, we propose a mobile agent-based approach to automate the process of detecting and coloring receptive hosts´ filesystems and monitoring the colored filesystem for instances of potential information leakage. Implementation details and execution results are included to illustrate the merits of the proposed approach.
Keywords :
distributed processing; mobile agents; security of data; watermarking; SELinux; colored Linux; covert channel attacks; distributed systems; information laundering; information leakage detection; mobile agent-based approach; security classification; security mechanisms; software agents; watermarking algorithms; Access control; Computerized monitoring; Information security; Leak detection; Linux; Mechanical factors; Protection; Software agents; Tagging; Watermarking;
Conference_Titel :
Intelligent Agents, 2009. IA '09. IEEE Symposium on
Conference_Location :
Nashville, TN
Print_ISBN :
978-1-4244-2767-3
DOI :
10.1109/IA.2009.4927510
