Adaptive Access Policy for the Linux Kernel

Trento, Italy January 31-February 04

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/SAINT.2005.11

2005 Symposium on Applications and th ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Takashi Horie Articles by Toshiharu Harada Articles by Kazuo Tanaka

	ASCII Text	x
	Takashi Horie, Toshiharu Harada, Kazuo Tanaka, "Adaptive Access Policy for the Linux Kernel," Applications and the Internet, IEEE/IPSJ International Symposium on, pp. 82-88, 2005 Symposium on Applications and the Internet (SAINT'05), 2005.

	BibTex	x
	@article{ 10.1109/SAINT.2005.11, author = {Takashi Horie and Toshiharu Harada and Kazuo Tanaka}, title = {Adaptive Access Policy for the Linux Kernel}, journal ={Applications and the Internet, IEEE/IPSJ International Symposium on}, volume = {0}, year = {2005}, isbn = {0-7695-2262-9}, pages = {82-88}, doi = {http://doi.ieeecomputersociety.org/10.1109/SAINT.2005.11}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Applications and the Internet, IEEE/IPSJ International Symposium on TI - Adaptive Access Policy for the Linux Kernel SN - 0-7695-2262-9 SP82 EP88 A1 - Takashi Horie, A1 - Toshiharu Harada, A1 - Kazuo Tanaka, PY - 2005 KW - null VL - 0 JA - Applications and the Internet, IEEE/IPSJ International Symposium on ER -

Takashi Horie, NTT DATA Corporation

Toshiharu Harada, NTT DATA Corporation

Kazuo Tanaka, NTT DATA Corporation

SELinux, that has stricter access control mechanisms than traditional UNIX/Linux, is thought to be an effective solution for server-side fortification. Some of SELinux's behavior toward actual incidents shows its potential as an intrusion detection system (IDS), but, still, it is nothing more than a logging facility. Further improvements are needed for SELinux, not only to detect incidents but also to deal with them. This paper describes the autonomous defense functionality called "Linux Kernel based IDS" as well as its implementation.

Citation:

Takashi Horie, Toshiharu Harada, Kazuo Tanaka, "Adaptive Access Policy for the Linux Kernel," saint, pp.82-88, 2005 Symposium on Applications and the Internet (SAINT'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.