Referenced Items are not available for this document.
One of the means to detect intruderpsilas activity is to trace all unauthorized changes in a file system. Programs which fulfill this functionality are called file integrity checkers. This paper concerns modern approach to file system integrity checking. It reviews architecture of popular systems that are widely used in production environment as well as scientific projects, which not only detect intruders but also take actions to stop their activity. The concept and architecture of ICAR system (integrity checking and restoring system), which we are developing, will be presented. The ICAR System not only covers functionality of integrity checkers but also automatically restores files, which were modified by the intruder. ICAR has been designed as kernel module of the operating system and it uses read-only devices to store data. The article can prove useful to the operating systems users, that are interested in securing their data and system configuration.
Published in:
Information Technology, 2008. IT 2008. 1st International Conference on
Date of Conference: 18-21 May 2008
- Page(s):
- 1 - 4
- E-ISBN :
- 978-1-4244-2245-6
- Print ISBN:
- 978-1-4244-2244-9
- INSPEC Accession Number:
- 10220272
- Conference Location :
- Gdansk
- Digital Object Identifier :
- 10.1109/INFTECH.2008.4621669
- Product Type:
- Conference Publications
About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies
A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.
