Implementing RBAC model in An Operating System Kernel

Reading time: 1 minute
...

📝 Original Info

  • Title: Implementing RBAC model in An Operating System Kernel
  • ArXiv ID: 1609.08154
  • Date: 2016-09-28
  • Authors: Zhiyong Shan, Yu-fang Sun

📝 Abstract

In this paper, the implementation of an operating system oriented RBAC model is discussed. Firstly, on the basis of RBAC96 model, a new RBAC model named OSR is presented. Secondly, the OSR model is enforced in RFSOS kernel by the way of integrating GFAC method and Capability mechanism together. All parts of the OSR implementation are described in detail.

💡 Deep Analysis

Figure 1

📄 Full Content

和数据库。对于在操作系统中的实现研究比较少而且不完善 [2] [3] 。 本文在实施 RBAC 之前,针对操作系统的特点对 RBAC96 模型进行细化和扩展。然后, 采用 GFAC 和 Capability 机制相结合的办法在红旗安全操作系统内核中实现 OSR 模型。 2 扩展 RBAC96 模型 RBAC96 是一个模型族 [2] , 包括 RBAC0、 RBAC1、 RBAC2 和 RBAC3 等模型, 其中 RBAC3 是前三者的综合(见图 1) 。RBAC3 包括以下内容:

CHANGE_OWNERChown(), fchown(), setuid(), setfsuid(), setreuid() REMOVE_FROM_KERNEL Delete_module() CHDIR Chdir(), fchdir() RENAME Rename() CLONE Fork(), clone() SEARACH Kernel-internel CREATE Create(), ipc(), socketcall(), mkdir(), mknod(), symlink(), open(), msgget(), shmget()

CHANGE_OWNER

📸 Image Gallery

cover.png

Reference

This content is AI-processed based on open access ArXiv data.

Start searching

Enter keywords to search articles

↑↓
ESC
⌘K Shortcut