Title :
Adaptive access policy for the Linux kernel
Author :
Horie, Takashi ; Harada, Toshiharu ; Tanaka, Kazuo
Author_Institution :
NTT Data Corp., Tokyo, Japan
fDate :
31 Jan.-4 Feb. 2005
Abstract :
SELinux, that has stricter access control mechanisms than traditional UNIX/Linux, is thought to be an effective solution for server-side fortification. Some of SELinux\´s behavior toward actual incidents shows its potential as an intrusion detection system (IDS), but, still, it is nothing more than a logging facility. Further improvements are needed for SELinux, not only to detect incidents but also to deal with them. This paper describes the autonomous defense functionality called "Linux Kernel based IDS" as well as its implementation.
Keywords :
Linux; authorisation; client-server systems; operating system kernels; Linux kernel; SELinux; adaptive access policy; intrusion detection system; server-side fortification; Access control; Information security; Internet; Intrusion detection; Kernel; Linux; National security; Permission; Prototypes; Research and development;
Conference_Titel :
Applications and the Internet, 2005. Proceedings. The 2005 Symposium on
Print_ISBN :
0-7695-2262-9
DOI :
10.1109/SAINT.2005.11
