Robert N. M. Watson
- Abrams, M.D., Eggers, K.W., LaPadula, L.J. and Olson, I.M. A generalized framework for access control: An informal description. In Proceedings of the 13th NIST-NCSC National Computer Security Conference (1990), 135--143.Google Scholar
- Anderson, J.P. Computer Security Technology Planning Study. Technical report, Electronic Systems Division, Air Force Systems Command, 1972.Google Scholar
- Apple Inc. Kernel authorization. Technical Note TN2127, 2007; http://developer.apple.com/technotes/tn2005/tn2127.html.Google Scholar
- Badger, L., Sterne, D.F., Sherman, D.., Walker, K.M. and Haghighat, S.A. Practical domain and type enforcement for Unix. In Proceedings of the 1995 IEEE Symposium on Security and Privacy 66 (1995). IEEE Computer Society. Google ScholarDigital Library
- Bell, D.E., and L.J. LaPadula. Secure computer systems: mathematical foundations and model. Technical Report M74-244. Mitre Corp., Bedford, MA, 1973.Google Scholar
- Biba, K. Integrity considerations for secure computer systems. Technical Report TR-3153. Mitre Corp., Bedford, MA, 1977.Google Scholar
- Boebert, W.E. and Kain, R.Y. A practical alternative to hierarchical integrity policies. In Proceedings of the 8th National Computer Security Conference, 1985.Google Scholar
- Cantrill, B.M., Shapiro, M.W. and Leventhal, A.H. Dynamic instrumentation of production systems. In Proceedings of the Usenix Annual Technical Conference (Berkeley, CA, 2004). Usenix Association. Google ScholarDigital Library
- Fraser, T., Badger, L. and Feldman, M. Hardening COTS software with generic software wrappers. In Proceedings of the 1999 IEEE Symposium on Security and Privacy.Google Scholar
- Kleiman, S.R. Vnodes: An architecture for multiple file system types in Sun Unix. In Proceedings of the Summer 1986 Usenix Conference.Google Scholar
- Loscocco, P.A. and Smalley, S.D. Integrating flexible support for security policies into the Linux operating system. In Proceedings of the 2001 Usenix Annual Technical Conference. Usenix Association, 29--42. Google ScholarDigital Library
- McKusick, M.K., Neville-Neil, G.V. The Design and Implementation of the FreeBSD Operating System. Pearson Education, 2004. Google ScholarDigital Library
- Neumann, P.G., Boyer, R.S., Feiertag, R.J., Levitt, K.N. and Robinson, L. A provably secure operating system: the system, its applications, and proofs, second edition. Technical Report CSL-116. Computer Science Laboratory, SRI International, 1980.Google Scholar
- Ott, A. Rule-set-based access control (RSBAC) for Linux (2010); http://www.rsbac.org/.Google Scholar
- Saltzer, J.H. and Schroeder, M.D. The protection of information in computer systems. In Proceedings of the IEEE 63, 9 (1975), 1278--1308.Google ScholarCross Ref
- Sebes, E.J. Overview of the architecture of Distributed Trusted Mach. In Proceedings of the Usenix Mach Symposium (1991). Usenix Association, 20--22.Google Scholar
- Spencer, R., Smalley, S., Loscocco, P., Hibler, M., Andersen, D. and Lepreau, J. 1999. The Flask security architecture: system support for diverse security policies. In Proceedings of the 8th Usenix Security Symposium (1999). Usenix Association, 123--139. Google ScholarDigital Library
- Vance, C., Miller, T. C., Dekelbaum, R., Reisse, A. 2007. Security-enhanced Darwin: Porting SELinux to Mac OS X. In Proceedings from the Third Annual Security Enhanced Linux Symposium (2007).Google Scholar
- Watson, R.N.M. Exploiting concurrency vulnerabilities in system call wrappers. In Proceedings of the First Usenix Workshop on Offensive Technologies. Usenix Association, 2007, 1--8. Google ScholarDigital Library
- Watson, R.N.M. New approaches to operating system security extensibility. Technical Report UCAM-CL-TR-818. University of Cambridge, Computer Laboratory, 2012.Google Scholar
- Watson, R.N.M., Anderson, J., Laurie, B. and Kennaway, K. Capsicum: Practical capabilities for Unix. In Proceedings of the 19th Usenix Security Symposium (2010). Usenix Association. Google ScholarDigital Library
- Watson, R.N.M. Feldman, B., Migus, A. and Vance, C. Design and implementation of the TrustedBSD MAC Framework. In Proceedings of the Third DARPA Information Survivability Conference and Exhibition (2003). IEEE.Google Scholar
- Wright, C., Cowan, C., Morris, J., Smalley, S. and Kroah-Hartman, G. 2002. Linux security modules: General security support for the Linux kernel. In Proceedings of the 11th Usenix Security Symposium (2002). Usenix Association. Google ScholarDigital Library
Index Terms
- A decade of OS access-control extensibility
Recommendations
A Decade of OS Access-control Extensibility: Open source security foundations for mobile and embedded devices
Web DevelopmentTo discuss operating system security is to marvel at the diversity of deployed access-control models: Unix and Windows NT multiuser security; Type Enforcement in SELinux; anti-malware products; app sandboxing in Apple OS X, Apple iOS, and Google Android;...
Configuring role-based access control to enforce mandatory and discretionary access control policies
Access control models have traditionally included mandatory access control (or lattice-based access control) and discretionary access control. Subsequently, role-based access control has been introduced, along with claims that its mechanisms are general ...
Role-Based Access Control Models
Since the 1970s, computer systems have featured multiple applications and served multiple users, leading to heightened awareness of data security issues. System administrators and software developers focused on different kinds of access control to ...
Comments