Systematic Policy Analysis for High-Assurance Services in SELinux

June 02-June 04

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/POLICY.2008.18

2008 IEEE Workshop on Policies for Di ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Gail-Joon Ahn Articles by Wenjuan Xu Articles by Xinwen Zhang

	ASCII Text	x
	Gail-Joon Ahn, Wenjuan Xu, Xinwen Zhang, "Systematic Policy Analysis for High-Assurance Services in SELinux," Policies for Distributed Systems and Networks, IEEE International Workshop on, pp. 3-10, 2008 IEEE Workshop on Policies for Distributed Systems and Networks, 2008.

	BibTex	x
	@article{ 10.1109/POLICY.2008.18, author = {Gail-Joon Ahn and Wenjuan Xu and Xinwen Zhang}, title = {Systematic Policy Analysis for High-Assurance Services in SELinux}, journal ={Policies for Distributed Systems and Networks, IEEE International Workshop on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3133-5}, pages = {3-10}, doi = {http://doi.ieeecomputersociety.org/10.1109/POLICY.2008.18}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Policies for Distributed Systems and Networks, IEEE International Workshop on TI - Systematic Policy Analysis for High-Assurance Services in SELinux SN - 978-0-7695-3133-5 SP3 EP10 A1 - Gail-Joon Ahn, A1 - Wenjuan Xu, A1 - Xinwen Zhang, PY - 2008 KW - Policy Analysis KW - SELinux VL - 0 JA - Policies for Distributed Systems and Networks, IEEE International Workshop on ER -

Gail-Joon Ahn

Wenjuan Xu

Xinwen Zhang

Identifying and protecting the trusted computing base (TCB) of a system is an important task to provide high- assurance services since a set of trusted subjects should be legitimately articulated for target applications. In this pa- per, we present a formal policy analysis framework to iden- tify TCB with the consideration of specific security goals. We also attempt to model information flows between do- mains in SELinux policies and detect security violations among information flows using Colored Petri Nets.

Index Terms:

Policy Analysis, SELinux

Citation:

Gail-Joon Ahn, Wenjuan Xu, Xinwen Zhang, "Systematic Policy Analysis for High-Assurance Services in SELinux," policy, pp.3-10, 2008 IEEE Workshop on Policies for Distributed Systems and Networks, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.