Name
Abstract | ||
|---|---|---|
As computing and communications increasingly pervade our lives, security and protection of sensitive data and systems are emerging as extremely important issues. This is especially true for embedded systems, often operating in non-secure environments, and with limited amount of computational, storage, and communication resources available. In servers and desktop systems, Security Enhanced Linux (SELinux) is currently used as a method to enhance security by enforcing a security control based on policies that confine user programs, or processes, to the minimum amount of privileges that they require for their execution. While providing a powerful mean for enhancing security in UNIX-like systems, SELinux still remains a feature that is too heavy to be fully supported by constrained devices. In this paper, we propose a hardware architecture for enhancing security and accelerating retrieval and applications of SELinux policies in embedded processors. We describe the general ideas behind our work, discussing motivations, advantages, and limits of the solution proposed, while suggesting the main steps needed to implement the described architecture on common embedded processors. |
Year | DOI | Venue |
|---|---|---|
2010 | 10.1145/1873548.1873551 | WESS |
Keywords | Field | DocType |
hardware-assisted security,unix-like system,minimum amount,security control,common embedded processor,security enhanced linux,selinux policy,hardware architecture,embedded processor,limited amount,embedded system,access control,embedded systems,system security | Architecture,Security controls,Computer science,Server,Security service,Cloud computing security,Computer security model,Hardware architecture,Embedded system | Conference |
Citations | PageRank | References |
1 | 0.41 | 9 |
Authors | ||
4 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Leandro Fiorin | 1 | 229 | 17.10 |
| Alberto Ferrante | 2 | 78 | 13.68 |
| Konstantinos Padarnitsas | 3 | 1 | 0.41 |
| Stefano Carucci | 4 | 1 | 0.41 |