Labels and event processes in the Asbestos operating system

ACM Transactions on Computer Systems

Volumn 25, Issue 4, 2007, Pages

  Vandebogart, Steve ^a   Efstathopoulos, Petros ^a   Kohler, Eddie ^a   Krohn, Maxwell ^b   Frey, Cliff ^b   Ziegler, David ^b   Kaashoek, Frans ^b   Morris, Robert ^b   Mazières, David ^c  

^a UNIVERSITY OF CALIFORNIA   (United States)

^b MASSACHUSETTS INSTITUTE OF TECHNOLOGY   (United States)

^c STANFORD UNIVERSITY   (United States)

Author keywords

Information flow; Labels; Mandatory access control; Process abstractions; Secure Web servers

Indexed keywords

INFORMATION FLOW; MANDATORY ACCESS CONTROL; PROCESS ABSTRACTIONS; SECURE WEB SERVERS;

ACCESS CONTROL; DATA REDUCTION; INFORMATION DISSEMINATION; PROCESS ENGINEERING; SERVERS; WEB SERVICES;

COMPUTER OPERATING SYSTEMS;

EID: 37049002830     PISSN: 07342071     EISSN: 15577333     Source Type: Journal    
DOI: 10.1145/1314299.1314302     Document Type: Article

References (49)

1. APACHE. The Apache HTTP Server Project, http://httpd.apache.org.
2. APACHE API NOTES. Apache API module notes: http://httpd.apache.org/docs/1.3/misc/API.html.
3. BELL, D. E. AND LA PADULA, L. 1976. Secure computer system: Unified exposition and Multics interpretation. Tech. Rep. MTR-2997, Rev. 1, MITRE Corp., Bedford, MA.
4. BERSTIS, V. 1980. Security and protection of data in the IBM System/38. In Proceedings of the 7th Annual Symposium on Computer Architecture (ISCA). 245-252.
5. BRANSTAD, M., TAJALLI, H., MAYER, F., AND DALVA, D. 1989. Access mediation in a message passing kernel. In Proceedings of the IEEE Symposium on Security and Privacy. Oakland, CA, 66-72.
6. CHERITON, D. R. 1988. The V distributed system. J. ACM 31, 3, 314-33.
7. DENNING, D. E. 1976. A lattice model of secure information flow. Commun. ACM 19, 5, 236-243.
8. DENNING, D. E. AND DENNING, P. J. 1977. Certification of programs for secure information flow. Commun. ACM 20, 7, 504-513.
9. DEPARTMENT OF DEFENSE. 1985. Trusted Computer System Evaluation Criteria (Orange Book). Department of Defense. DoD 5200.28-STD.
10. DUNKELS, A. 2003. Full TCP/IP for 8-bit architectures. In Proceedings of the 1st International Conference on Mobile Systems, Applications, and Services (MOBISYS). San Francisco, CA.
11. EFSTATHOPOULOS, P., KROHN, M., VANDEBOGART, S., FREY, C., ZIEGLER, D., KOHLER, E., MAZIÈRES, D., KAASHOEK, F., AND MORRIS, R. 2005. Labels and event processes in the Asbestos operating system. In Proceedings of the 20th ACM Symposium on Operating Systems Principles. Brighton, England.
12. FRASER, T. 2000. LOMAC: Low water-mark integrity protection for COTS environments. In Proceedings of the IEEE Symposium on Security and Privacy. Oakland, CA, 230-245.
13. GOLDBERG, R. P. 1973. Architecture of virtual machines. In Proceedings of the AFIPS National Computer Conference. Vol. 42. 309-318.
14. HARDY, N. 1988. The confused deputy (or why capabilities might have been invented). Operat. Syst. Rev. 22, 4, 36-38.
15. HU, W.-M. 1991. Reducing timing channels with fuzzy time. In Proceedings of the IEEE Symposium on Security and Privacy. Oakland, CA, 8-20.
16. JAEGER, T., PRAKASH, A., LIEDTKE, J., AND ISLAM, N. 1999. Flexible control of downloaded executable content. ACM Trans. Inform. Syst. Secur. 2, 2, 177-228.
17. KARGER, P. A. 1987. Limiting the damage potential of discretionary Trojan horses. In Proceedings of the IEEE Symposium on Security and Privacy, Oakland, CA, 32-37.
18. KARGER, P. A. AND HERBERT, A. J. 1984. An augmented capability architecture to support lattice security and traceability of access. In Proceedings of the IEEE Symposium on Security and Privacy. Oakland, CA, 2-12.
19. KARGER, P. A., ZURKO, M. E., BONIN, D. W., MASON, A. H., AND KAHN, C. E. 1990. A VMM security kernel for the VAX architecture. In Proceedings of the IEEE Symposium on Security and Privacy. Oakland, CA, 2-19.
20. KEY LOGIC. 1989. The KeyKOS/KeySAFE system design. Key Logic. Tech. Rep. SEC009-01. http://www.cis.upemi.edu/~KeyKOS/.
21. KING, S. T. AND CHEN, P. M. 2003. Operating system support for virtual machines. In Proceedings of the USENIX Annual Technical Conference, San Antonio, TX.
22. KROHN, M. 2004. Building secure high-performance web services with OKWS. In Proceedings of the USENIX Annual Technical Conference. Boston, MA, 185-198.
23. KROHN, M., EFSTATHOPOULOS, P., FREY, C., KAASHOEK, F., KOHLER, E., MAZIÈRES, D., MORRIS, R., OSBORNE, M., VANDEB OGART, S., AND ZIEGLER, D. 2005. Make least privilege a right (not a privilege). In Proceedings of the 10th Hot Topics in Operating Systems Symposium (HotOS-X). Santa Fe, NM.
24. LANDWEHR, C. E. 1981. Formal models for computer security. ACM Comput. Surv. 13, 3 (Sept.), 247-278.
25. LEMOS, R. 2005. News.com: Payroll site closes on security worries, Feb. 25, 2005. http://news.com.com/2102-1029_3-5587859.html.
26. LIEDTKE, J. 1995. On microkernel construction. In Proceedings of the 15th ACM Symposium on Operating Systems Principles. Copper Mountain Resort, CO.
27. LOSCOCCO, P. AND SMALLEY, S. 2001. Integrating flexible support for security policies into the Linux operating system. In Proceedings of the USENIX Annual Technical Conference - FREENIXTrack. 29-40.
28. MACMILLAN, K., BRINDLE, J., MAYER, F., CAPLAN, D., AND TANG, J. 2006. Design and implementation of the SELinux policy management server. In Proceedings of the Security Enhanced Linux Symposium. Baltimore, MD.
29. MCCOLLUM, C. J., MESSING, J. R., AND NOTARGIACOMO, L. 1990. Beyond the pale of MAC and DAC - defining new forms of access control. In Proceedings of the IEEE Symposium, on Security and Privacy, Oakland, CA, 190-200.
30. MCILROY, M. D. AND REEDS, J. A. 1992. Multilevel security in the UNIX tradition. Softw. - Pract. Exper. 22, 8, 673-694.
31. MITCHELL, J. G., GIBBONS, J., HAMILTON, G., KESSLER, P. B., KHALIDI, Y. Y. A., KOUGIOURIS, P., MADANY, P., NELSON, M. N., POWELL, M. L., AND RADIA, S. R. 1994. An overview of the Spring system. In Proceedings of COMPCON 1994. 122-131.
32. MYERS, A. C. AND LISKOV, B. 2000. Protecting privacy using the decentralized label model. ACM Trans. Comput. Syst. 9, 4 Oct., 410-442.
33. NEWS10. 2005. Hacker accesses thousands of personal data files at CSU Chico, March 17, 2005. http ://www.news10.net/display_story.aspx?storyid= 9784.
34. PAI, V. S., DRUSCHEL, P., AND ZWAENEPOEL, W. 1999. Flash: An efficient and portable Web server. In Proceedings of the USENIX Annual Technical Conference. Monterey, CA, 199-212.
35. PIKE, R., PRESOTTO, D., DORWARD, S., FLANDRENA, B., THOMPSON, K., TRICKEY, H., AND WINTERBOTTOM, P. 1995. Plan 9 from Bell Labs. Comput. Syst. 8, 3, 221-254.
36. RASHID, R. F. AND ROBERTSON, G. G. 1981. Accent: A communication oriented network operating system kernel. In Proceedings of the 8th ACM Symposium on Operating Systems Principles. Pacific Grove, CA, 64-75.
37. ROZIER, M., ABROSSIMOV, V., ARMAND, F., BOULE, I., GIEN, M., GUILLEMONT, M., HERRMANN, F., KAISER, C., LANGLOIS, S., LEONARD, P., AND NEUHAUSER, W. 1988. CHORUS distributed operating system. Comput. Syst. 1, 305-370.
38. SALTZER, J. H. AND SCHROEDER, M. D. 1975. The protection of information in computer systems. Proceedings of the IEEE 63, 9, 1278-1308.
39. SCHNEIER, B. 1993. Description of a new variable-length key, 64-bit block cipher (Blowfish). In Proceedings of Fast Software Encryption, Cambridge Security Workshop. Springer-Verlag, 191-204.
40. SHAPIRO, J. S. AND HARDY, N. 2002. EROS: A principle-driven operating system from the ground up. IEEE Softw. 19, 1, 26-33.
41. SHAPIRO, J. S., SMITH, J. M., AND FARBER, D. J. 1999. EROS: A fast capability system. In Proceedings of the 17th ACM Symposium on Operating Systems Principles. Kiawah Island, SC, 170-185.
42. SQLITE. http://www.sqlite.org. Version 3.2.1.
43. TANENBAUM, A. S., VAN RENESSE, R., VAN STAVEREN, H., SHARP, G. J., MULLENDER, S. J., JANSEN, J., AND VAN ROSSUM, G. 1990. Experiences with the Amoeba distributed operating system. Commun. ACM 33, 12, 46-63.
44. TROUNSON, R. 2006. Major breach of UCLA's computer files. Los Angeles Times, Dec. 12, 2006. http://www.latimes.com/news/local/la-me- ucla12dec12, 0 ,7111141.story.
45. VMWARE. 2000. VMware and the National Security Agency team to build advanced secure computer systems. Tech Trend Notes 9,4, 3-11. http://www.vmware.com/pdf/TechTrendNotes.pdf.
46. VON BEHREN, R., CONDIT, J., ZHOU, F., NECULA, G. C., AND BREWER, E. 2003. Capriccio: Scalable threads for Internet services. In Proceedings of the 19th ACM Symposium on Operating Systems Principles. Bolton Landing, Lake George, NY, 268-281.
47. WATSON, R., MORRISON, W, VANCE, C., AND FELDMAN, B. 2003. The TrustedBSD MAC framework: Extensible kernel access control for FreeBSD 5.0. In Proceedings of the USENIX Annual Technical Conference, San Antonio, TX, 285-296.
48. WHITAKER, A., SHAW, M., AND GRIBBLE, S. D. 2002. Scale and performance in the Denali isolation kernel. In Proceedings of the 5th Symposium on Operating Systems Design and Implementation (OSDI '02). Boston, MA, 195-210.
49. ZELDOVICH, N. B., BOYD-WICKIZER, S., KOHLER, E., AND MAZIÈRES, D. 2006. Making information flow explicit in HiStar. In Proceedings of the 7th Symposium on Operating Systems Design and Implementation (OSDI'06). Seattle, WA.