Title :
T-Kernel/SS: A Secure Filesystem with Access Control Protection Using Tamper-Resistant Chip
Author :
Yashiro, Takeshi ; Bessho, Masahiro ; Kobayashi, Shinsuke ; Koshizuka, Noboru ; Sakamura, Ken
Author_Institution :
Interfaculty Initiative in Inf. Studies, Univ. of Tokyo, Tokyo, Japan
Abstract :
We propose T-Kernel/SS (Secure Storage), a secure file system with access control protection using tamper-resistant chip. The main feature of our system is to protect access control from policy enforcement violation even when the operating system is replaced or when disks are peeked or tampered physically. Our approach consists in protecting access control by doing sensitive operations on tamper-resistant hardware with access control capabilities. This method is considered a replacement for kernel reference monitor, which cannot enforce access control in situations where secure file systems are designed to protect data confidentiality. As a proof-of-concept, we implemented a secure file system with access control protection. Evaluation results show that our file system can ensure access control in secure file systems which is usable for applications that require this feature.
Keywords :
authorisation; storage management; T-Kernel/SS; access control protection; kernel reference monitor; operating system; secure file system; secure storage; tamper-resistant chip; access control; eTRON; secure filesystem; tamper-resistance;
Conference_Titel :
Computer Software and Applications Conference Workshops (COMPSACW), 2010 IEEE 34th Annual
Conference_Location :
Seoul
Print_ISBN :
978-1-4244-8089-0
Electronic_ISBN :
978-0-7695-4105-1
DOI :
10.1109/COMPSACW.2010.32
