Suspicious-taint-based access control for protecting OS from network attacks

Shan, Zhiyong

doi:10.33545/26633582.2021.v3.i1a.43

Int. J. Eng. Comput. Sci.

2021

DOI: 10.33545/26633582.2021.v3.i1a.43

|View full text |Cite

Suspicious-taint-based access control for protecting OS from network attacks

Zhiyong Shan¹

Abstract: Today, security threats to operating systems largely come from network. Traditional discretionary access control mechanism alone can hardly defeat them. Although traditional mandatory access control models can effectively protect the security of OS, they have problems of being incompatible with application software and complex in administration. In this paper, we propose a new model, Suspicious-Taint-Based Access Control (STBAC) model, for defeating network attacks while being compatible, simple and maintainin… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Publication Types

Select...

Other4

Relationship

Self Cite0

Independent4

Authors

Journals

Cited by 4 publications

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Compatible and Usable Mandatory Access Control for Good-enough OS Security

Shan

2009

2009 Second International Symposium on Electronic Commerce and Security

View full text Add to dashboard Cite

OS compromise is one of the most serious computer security problems today, but still not being resolved. Although people proposed different kinds of methods, they could not be accepted by most users who are non-expert due to the lack of compatibility and usability. In this paper, we introduce a kind of new mandatory access control model, named CUMAC, that aims to achieve good-enough security, high compatibility and usability. It has two novel features. One is access control based on tracing potential intrusion that can reduce false negatives and facilitate security configuration, in order to improve both compatibility and usability; the other is automatically figuring out all of the compatibility exceptions that usually incurs incompatible problems. The experiments performed on the prototype show that CUMAC can defense attacks from network, mobile disk and local untrustable users while keeping good compatibility and usability.

show abstract

Compatible and Usable Mandatory Access Control for Good-enough OS Security

Shan

2009

2009 Second International Symposium on Electronic Commerce and Security

View full text Add to dashboard Cite

show abstract

Confining Windows Inter-Process Communications for OS-Level Virtual Machine

Shan¹,

Yang²,

Chiueh³

2016

Preprint

View full text Add to dashboard Cite

Virtualizing System and Ordinary Services in Windows-based OS-Level Virtual Machines

Shan

Chiueh

Wang

2016

Preprint

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Suspicious-taint-based access control for protecting OS from network attacks

Cited by 4 publications

References 29 publications

Compatible and Usable Mandatory Access Control for Good-enough OS Security

Compatible and Usable Mandatory Access Control for Good-enough OS Security

Confining Windows Inter-Process Communications for OS-Level Virtual Machine

Virtualizing System and Ordinary Services in Windows-based OS-Level Virtual Machines

Contact Info

Product

Resources

About