By Topic

Verifying mediations of Linux Security Modules with BLAST

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

1 Author(s)
Li xin ; Tianjin Polytech. Univ., Tianjin, China

The Linux Security Modules (LSM) framework provides a flexible access control mechanism for the Linux kernel. While plenty of efforts were dedicated to put LSM into the kernel, there has been little work on verifying the correct placement of authorization hooks. This paper proposes an approach to verify the mediations of LSM using BLAST, a software model checker for C programs. We choose several subsystems in the Linux kernel source code to verify the mediations of controlling functions using our approach. We also discuss the effectiveness and limitations of our approach and the solutions for future improvement.

Published in:

Information Management and Engineering (ICIME), 2010 The 2nd IEEE International Conference on

Date of Conference:

16-18 April 2010