期刊名称:International Journal of Innovative Research in Computer and Communication Engineering
印刷版ISSN:2320-9798
电子版ISSN:2320-9801
出版年度:2014
卷号:2
期号:12
出版社:S&S Publications
摘要:In modern operating system kernels level security is not present and a well-known approach to protectingsystems from malicious activity is through the deployment of Mandatory Access Control (MAC). Existing MACsolutions belongs to authorization mechanism however authorization mechanism along is not sufficient for achievingsystem assurance. Today’s modern computing era operating system Kernel should have process level authenticationmechanism, where process of user level application proves its identity to kernel. Current process authentication is doneusing information such as process names or an executable path that is conventionally used by OS to identify a processis not reliable. This may results as malware may impersonate to other processes thus violating of system assurance canoccur. We propose a lightweight secure application authentication framework in which user-level applications arerequired to present proofs at runtime to be authenticated to kernel. In order to demonstrate the application of ProcessAuthentication proposed System Call monitoring framework for preventing unauthorized use or access of systemresources like HDD, RAM. It verified the identity of processes before completing the requested System calls.
关键词:Operating System Security; Process authentication; Secure Computing; System calls monitoring
