Abstract:
The desire for secure computer systems has existed since the very beginning of such computer systems. Over the years, a lot of work has been accomplished with security but despite all the progress made in securing systems, attacks in different forms have prevailed also. Considering the different components that make up the systems and its network, the operating system itself in most of the cases gets compromised and is used by the attacker to infiltrate the network or individual system. Different studies have suggested that the real problem and vulnerability lies in not in application software but in the underlying operating system. It is the operating system that needs to be hardened and made more secure. This paper provides an overview of what has been achieved and what is being achieved in the development of a secure operating system.
Keywords:
Operating system, Linux, Kernel, Security
References:
[1] Linux Foundation, “Linux Adoption Trends: A Survey of Enterprise End Users,” October 2010 [Online]. Available: http://www.linuxfoundation.org/lp/page/download-the-free-linux-adoption-trends-report.
[2] Ratsameetip Wita, Yunyong Teng-Amnuay, "Vulnerability Profile for Linux," aina, vol. 1, pp.953-958, 19th International Conference on Advanced Information Networking and Applications (AINA'05) Volume 1 (AINA papers), 2005.
[3] Chris Wright, Crispin Cowan, Stephen Smalley, James Morris, Greg Kroah-Hartman, "Linux Security Modules: General Security Support for the Linux Kernel," oasis, pp.213, Foundations of Intrusion Tolerant Systems (OASIS'03), 2003.
[4] Timothy Fraser, "LOMAC: Low Water-Mark Integrity Protection for COTS Environments," sp, pp.0230, 2000 IEEE Symposium on Security and Privacy (S&P 2000), 2000.
[5] Timothy Fraser, "LOMAC: You Can Live With," pp.1-13, Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference. (FREENIX ‘01) 2001.
[6] Erez Zadok, Ion Badulescu, “A Stackable File System Interface for Linux,” LinuxExpo Conference Proceedings, pp. 141-151, May 1999.
[7] Swapnil Patil, Anand Kashyap, Gopalan Sivathanu, Erez Zadok, “I3FS: An In-Kernel Integrity Checker and Intrusion Detection File System,” Proceedings of the 18th USENIX Large Installation System Administration Conference. (LISA ‘04). 2004.
[8] Robert Watson, Brian Feldman, Adam Migus, Chris Vance, "Design and Implementation of the TrustedBSD MAC Framework," discex, vol. 1, pp.38, DARPA Information Survivability Conference and Exposition - Volume I, 2003.
[9] Robert Watson, Wayne Morrison, Chris Vance, Brain Feldman, "The TrustedBSD MAC Framework : Extensible Kernel Access Control for FreeBSD 5.0," Proceedings of the FREENIX Track : 2003 USENIX Annual Technical Conference (FREENIX ’03) 2003.
[10] Nigel Edwards, Joubert Berger, Tse Huong Choo. "A Secure Linux Platform". Pp. 3-3, Vol 5, Proceedings of the 5th Annual Linux Showcase & Conference. (ALS ‘01). 2001.
[11] Massimo Bernaschi, Emanuele Gabrielle, Luigi V. Mancini, "Enhancements to the Linux Kernel for Blocking Buffer Overflow Based Attacks". Pp 14, Vol 4, Proceedings of the 14th Annual Linux Showcase & Conference. (ALS ’00). 2000.
[12] Crispin Cowan, Perry Wagle, Calton Pu, Steve Beattie, Jonathan Walpole, "Buffer Overflow: Attacks and Defenses for the Vulnerability of the Decade". Proceedings of the Foundation of Intrusion Tolerant Systems. (OASIS ‘03). 2003.
[13] Akshat Aranya, Charles P. Wright, Erez Zadok, "Tracefs : A File System to Trace Them All". Proceedings of the Third USENIX Conference on File and Storage Technologies. (FAST ’04). 2004.
[14] Serge E. Hallyn, Andrew G. Morgan, "Linux Capabilities : Making Them Work". pp. 163-172, Vol 1, Linux Symposium 2008.
[15] Wikipedia, "Usage share of operating systems", [Online]. Available: http://en.wikipedia.org/wiki/Usage_share_of_operating_systems
Citations:
APA:
Zafar, M. A. (2020). Towards a more Secure Operating System. International Journal of Advanced Science and Technology (IJAST), ISSN: 2005-4238(Print); 2207-6360 (Online), NADIA, 140, 35-40. doi: 10.33832/ijast.2020.140.04.
MLA:
Zafar, Muhammad Ahmad, “Towards a more Secure Operating System.” International Journal of Advanced Science and Technology, ISSN: 2005-4238(Print); 2207-6360 (Online), NADIA, vol. 140, 2020, pp. 35-40. IJAST, http://article.nadiapub.com/IJAST/Vol140/4.html.
IEEE:
[1] M. A. Zafar, "Towards a more Secure Operating System." International Journal of Advanced Science and Technology (IJAST), ISSN: 2005-4238(Print); 2207-6360 (Online), NADIA, vol. 140, pp. 35-40, July 2020.
