The access control mechanisms of existing mainstream operating systems are inadequate to provide strong system security. Enhanced access control mechanisms have failed to win acceptance into mainstream operating systems due in part to a lack of consensus within the security community on the right solution. The Linux Security Modules (LSM) project has developed a lightweight, general purpose, access control framework for the mainstream Linux kernel that enables many different access control models to be implemented as loadable kernel modules. This paper presents the design and implementation of LSM and discusses the challenges in providing a truly general solution that minimally impacts the Linux kernel.
Did you find this white paper useful?
13 out of 29 users found this white paper useful
Related white papers
Desktop TCO Update 2003
Gartner's total cost of ownership update reinforces that switching operating systems generally results in minor changes to TCO. Enterprises should focus on improving manageability to achieve bigger TCO reductions. ...
White paper: The Future of Software Delivery
This paper provides a brief description of past software delivery issues that have contributed to the current environment; identification of key trends that drive our industry today; and an outline...
Linux - Advanced Networking Overview
Linux, a shareware operating system, supports a number of advanced networking features, thanks largely to the huge linux networking community. Besides the reliable TCP/UDP/IP protocol suite, a number of new...
Preparing Your Linux Box for the Internet - Armoring Linux
Organizations throughout the world are adopting Linux as their production platform. By connecting to the Internet to provide critical services, they also become targets of opportunity. To help protect these...
Building a Robust Linux Kernel Piggybacking the Linux Test Project
The Linux kernel is growing at a rapid rate and runs across many architectures and platforms; ensuring that the kernel is reliable, robust and stable is very critical. The Linux...
Cleartext Passwords in Linux Memory
Upon examination, the memory of a popular Linux distribution contained many cleartext passwords, including login, SSH, Truecrypt, email, IM and root passwords. These passwords are retained by running applications and...
3-D Look at the IBM Software Development Platform for Linux
This webcast explains how the IBM Software Development Platform supports development teams in a Linux environment. This event covers the 3-D aspect of the IBM SDP for Linux: Discovery, Development...
