SILT: integrated logging management for security-enhanced Linux

Author

Davis, Nicholas ; Holloway, Perry ; Hale, John

Author_Institution

Dept. of Comput. Sci., Tulsa Univ., USA

fYear

2004

fDate

10-11 June 2004

Firstpage

298

Lastpage

305

Abstract

Security-enhanced Linux offers a robust mandatory access control protection scheme that enhances standard Unix-based permissions, and allows for greater overall system security. While a wide array of configuration tools are currently available, system administration of SELinux is still cumbersome. One area that could ease some of the configuration burdens is kernel event logging, specifically for security-enhanced Linux generated events. This paper proposes a tool, called SILT, designed to enhance SELinux logging. A flexible interface supports command-line and graphical logging configuration. Backend scripts tune the logging facility, according to user direction.

Keywords

Linux; authorisation; operating system kernels; Unix; command-line configuration; graphical logging configuration; logging management; mandatory access control protection scheme; security-enhanced Linux; Access control; Information security; Invasive software; Kernel; Linux; Multilevel systems; Operating systems; Permission; Protection; Viruses (medical);

fLanguage

English

Publisher

ieee

Conference_Titel

Information Assurance Workshop, 2004. Proceedings from the Fifth Annual IEEE SMC

Print_ISBN

0-7803-8572-1

Type

conf

DOI

10.1109/IAW.2004.1437831

Filename

1437831

Link To Document

https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3308731