Design and implementation of an extended reference monitor for trusted operating systems

Hyung Chan Kim; Wook Shin; R. S. Ramakrishna; Kouichi Sakurai

doi:10.1007/11689522_22

Design and implementation of an extended reference monitor for trusted operating systems

Hyung Chan Kim, Wook Shin, R. S. Ramakrishna, Kouichi Sakurai

Mathematical Informatics

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

3 Citations (Scopus)

Abstract

Conventional access control schemes have supported confidentiality and integrity acknowledging the necessary organizational security policy in operating systems. However, many runtime attacks in operating systems involve behavioral semantics, indicating that attacks should be seen as a sequence of access operations. Ironically these attacks are legitimate under any access control policy. This is due to the lack of behavioral dimension in security enforcement. We propose an extended reference monitor to include this dimension. Our method is based on safety property specification on system call sequences. The reference monitor checks the trace at runtime for behavior control in Linux operating system.

Original language	English
Title of host publication	Information Security Practice and Experience - Second International Conference, ISPEC 2006, Proceedings
Publisher	Springer Verlag
Pages	235-247
Number of pages	13
ISBN (Print)	3540330526, 9783540330523
DOIs	https://doi.org/10.1007/11689522_22
Publication status	Published - 2006
Event	2nd International Conference on Information Security Practice and Experience, ISPEC 2006 - Hangzhou, China Duration: Apr 11 2006 → Apr 14 2006

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	3903 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	2nd International Conference on Information Security Practice and Experience, ISPEC 2006
Country/Territory	China
City	Hangzhou
Period	4/11/06 → 4/14/06

All Science Journal Classification (ASJC) codes

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/11689522_22

Cite this

Kim, H. C., Shin, W., Ramakrishna, R. S., & Sakurai, K. (2006). Design and implementation of an extended reference monitor for trusted operating systems. In Information Security Practice and Experience - Second International Conference, ISPEC 2006, Proceedings (pp. 235-247). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3903 LNCS). Springer Verlag. https://doi.org/10.1007/11689522_22

Design and implementation of an extended reference monitor for trusted operating systems. / Kim, Hyung Chan; Shin, Wook; Ramakrishna, R. S. et al.
Information Security Practice and Experience - Second International Conference, ISPEC 2006, Proceedings. Springer Verlag, 2006. p. 235-247 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3903 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Kim, HC, Shin, W, Ramakrishna, RS & Sakurai, K 2006, Design and implementation of an extended reference monitor for trusted operating systems. in Information Security Practice and Experience - Second International Conference, ISPEC 2006, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 3903 LNCS, Springer Verlag, pp. 235-247, 2nd International Conference on Information Security Practice and Experience, ISPEC 2006, Hangzhou, China, 4/11/06. https://doi.org/10.1007/11689522_22

Kim HC, Shin W, Ramakrishna RS, Sakurai K. Design and implementation of an extended reference monitor for trusted operating systems. In Information Security Practice and Experience - Second International Conference, ISPEC 2006, Proceedings. Springer Verlag. 2006. p. 235-247. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/11689522_22

Kim, Hyung Chan ; Shin, Wook ; Ramakrishna, R. S. et al. / Design and implementation of an extended reference monitor for trusted operating systems. Information Security Practice and Experience - Second International Conference, ISPEC 2006, Proceedings. Springer Verlag, 2006. pp. 235-247 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{4bf8bd10a8bf44e99966cb027c694a8f,

title = "Design and implementation of an extended reference monitor for trusted operating systems",

abstract = "Conventional access control schemes have supported confidentiality and integrity acknowledging the necessary organizational security policy in operating systems. However, many runtime attacks in operating systems involve behavioral semantics, indicating that attacks should be seen as a sequence of access operations. Ironically these attacks are legitimate under any access control policy. This is due to the lack of behavioral dimension in security enforcement. We propose an extended reference monitor to include this dimension. Our method is based on safety property specification on system call sequences. The reference monitor checks the trace at runtime for behavior control in Linux operating system.",

author = "Kim, {Hyung Chan} and Wook Shin and Ramakrishna, {R. S.} and Kouichi Sakurai",

year = "2006",

doi = "10.1007/11689522_22",

language = "English",

isbn = "3540330526",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "235--247",

booktitle = "Information Security Practice and Experience - Second International Conference, ISPEC 2006, Proceedings",

address = "Germany",

note = "2nd International Conference on Information Security Practice and Experience, ISPEC 2006 ; Conference date: 11-04-2006 Through 14-04-2006",

}

TY - GEN

T1 - Design and implementation of an extended reference monitor for trusted operating systems

AU - Kim, Hyung Chan

AU - Shin, Wook

AU - Ramakrishna, R. S.

AU - Sakurai, Kouichi

PY - 2006

Y1 - 2006

N2 - Conventional access control schemes have supported confidentiality and integrity acknowledging the necessary organizational security policy in operating systems. However, many runtime attacks in operating systems involve behavioral semantics, indicating that attacks should be seen as a sequence of access operations. Ironically these attacks are legitimate under any access control policy. This is due to the lack of behavioral dimension in security enforcement. We propose an extended reference monitor to include this dimension. Our method is based on safety property specification on system call sequences. The reference monitor checks the trace at runtime for behavior control in Linux operating system.

AB - Conventional access control schemes have supported confidentiality and integrity acknowledging the necessary organizational security policy in operating systems. However, many runtime attacks in operating systems involve behavioral semantics, indicating that attacks should be seen as a sequence of access operations. Ironically these attacks are legitimate under any access control policy. This is due to the lack of behavioral dimension in security enforcement. We propose an extended reference monitor to include this dimension. Our method is based on safety property specification on system call sequences. The reference monitor checks the trace at runtime for behavior control in Linux operating system.

UR - http://www.scopus.com/inward/record.url?scp=33745607332&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33745607332&partnerID=8YFLogxK

U2 - 10.1007/11689522_22

DO - 10.1007/11689522_22

M3 - Conference contribution

AN - SCOPUS:33745607332

SN - 3540330526

SN - 9783540330523

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 235

EP - 247

BT - Information Security Practice and Experience - Second International Conference, ISPEC 2006, Proceedings

PB - Springer Verlag

T2 - 2nd International Conference on Information Security Practice and Experience, ISPEC 2006

Y2 - 11 April 2006 through 14 April 2006

ER -

Design and implementation of an extended reference monitor for trusted operating systems

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this