Operating System SecurityMorgan & Claypool Publishers, 2008 - 218페이지 "Operating systems provide the fundamental mechanisms for securing computer processing. Since the 1960s, operating systems designers have explored how to build"secure" operating systems - operating systems whose mechanisms protect the system against a motivated adversary. Recently, the importance of ensuring such security has become a mainstream issue for all operating systems. In this book, we examine past research that outlines the requirements for a secure operating system and research that implements example systems that aim for such requirements. For system designs that aimed to satisfy these requirements,we see that the complexity of software systems often results in implementation challenges that we are still exploring to this day. However, if a system design does not aim for achieving the secure operating system requirements, then its security features fail to protect the system in a myriad of ways. We also study systems that have been retro-fit with secure operating system features after an initial deployment. In all cases, the conflict between function on one hand and security on the other leads to difficult choices and the potential for unwise compromises. From this book, we hope that systems designers and implementers will learn the requirements for operating systems that effectively enforce security and will better understand how to manage the balance between function and security."--BOOK JACKET. |
목차
1 | |
Access Control Fundamentals | 9 |
Multics | 23 |
Security in Ordinary Operating Systems | 39 |
Verifiable Security Goals | 57 |
Security Kernels | 75 |
Securing Commercial Operating Systems | 91 |
Solaris Trusted Extensions | 103 |
Building a Secure Operating System for Linux | 120 |
Secure Capability Systems | 141 |
Secure Virtual Machine Systems | 152 |
System Assurance | 168 |
Bibliography | 178 |
Biographies | 179 |
Index | 205 |
기타 출판본 - 모두 보기
자주 나오는 단어 및 구문
access control list applications architecture assurance authorization queries Bell-LaPadula Biba capability systems Chapter communication complete mediation context covert channels defined descriptor device discretionary access control enable enforcement ensure evaluation example execution file system function GEMSOS hardware high integrity implementation information flow input Linux LSM hook mandatory access control mandatory protection system memory microkernel MLS policy modify module Multics Multics system multilevel security open system call password perform permissions privileges Proceedings processes running programs protection domain provides reference monitor interface request requirements retrofit Scomp secrecy and integrity secret secure operating system security class security features security kernel security-sensitive operations segment SELinux SELinux policy sensitivity level server setuid Solaris specific system call system resources tamperproofing transition trusted computing base Trusted Extensions Trusted Path trusted software UNIX systems untrusted processes VAX VMM verify virtual machine VMware vulnerabilities write zone