Improving Host Security with System Call Policies
dc.contributor.author | Provos, Niels | en_US |
dc.date.accessioned | 2014-07-18T18:11:47Z | |
dc.date.available | 2014-07-18T18:11:47Z | |
dc.date.issued | 2002-11-11 | en_US |
dc.identifier.citation | Niels Provos, "Improving Host Security with System Call Policies," November 2002. [12th USENIX Security Symposium, Washington, D.C. (August 2003).] <http://hdl.handle.net/2027.42/107886> | en_US |
dc.identifier.uri | https://hdl.handle.net/2027.42/107886 | |
dc.description.abstract | We introduce a system that eliminates the need to run programs in privileged process contexts. Using our system, programs run unprivileged but may execute certain operations with elevated privileges as determined by a configurable policy eliminating the need for suid or sgid binaries. We present the design and analysis of the "Systrace" facility which supports fine grained process confinement, intrusion detection, auditing and privilege elevation. It also facilitates the often difficult process of policy generation. With Systrace, it is possible to generate policies automatically in a training session or generate them interactively during program execution. The policies describe the desired behavior of services or user applications on a system call level and are enforced to prevent operations that are not explicitly permitted. We show that Systrace is efficient and does not impose significant performance penalties. | en_US |
dc.publisher | Center for Information Technology Integration | en_US |
dc.title | Improving Host Security with System Call Policies | en_US |
dc.type | Technical Report | en_US |
dc.subject.hlbsecondlevel | Computer Science | en_US |
dc.subject.hlbtoplevel | Engineering | en_US |
dc.contributor.affiliationum | Center for Information Technology Integration | en_US |
dc.description.bitstreamurl | http://deepblue.lib.umich.edu/bitstream/2027.42/107886/1/citi-tr-02-3.pdf | |
dc.owningcollname | Electrical Engineering and Computer Science, Department of (EECS) |
Files in this item
Remediation of Harmful Language
The University of Michigan Library aims to describe library materials in a way that respects the people and communities who create, use, and are represented in our collections. Report harmful or offensive language in catalog records, finding aids, or elsewhere in our collections anonymously through our metadata feedback form. More information at Remediation of Harmful Language.
Accessibility
If you are unable to use this file in its current format, please select the Contact Us link and we can modify it to make it more accessible to you.