Abstract

Damages from computer viruses or modifications of web pages are serious problems in the Internet today. In order to prevent such damages, operating systems with security functions are actively developed.

Security-Enhanced Linux (SELinux) is the secure operating system developed by National Security Agency (NSA) . SELinux implements strong and fine-grained access control. However, the configuration of SELinux access control policy is very complex. Therefore, some tools for supporting the configuration are developed. SELinux Policy Editor is one of such tools and it simplifies the configuration by integrating some configuration items.

This paper points out extra authority given from the integration and analyses the security of SELinux access control mechanism based on the simplified policy. This analysis shows that the simplified policy may allow an attacker to steal or modify particular files illegally, and so on. Then, this paper examines improvement of the way of integration which solves the problems. Moreover, in order to make the configuration flexible for various requirements for security and configuration cost, this paper shows a way of configuration which combines the simplified configuration with the unsimplified one.

[Papers]

Katsuya SUEYASU, Toshihiro TABATA, Kouichi SAKURAI,
"On the Security of SELinux Access Control Based on a Simplified Policy,"
Proc. of the Computer Security Symposium 2003 (CSS2003), pp.253-258, Oct. 2003. (in Japanese)

Katsuya SUEYASU, Toshihiro TABATA, Kouichi SAKURAI,
"On the Security of SELinux with a Simplified Policy,"
Proc. of the IASTED International Conference on Communication, Network, and Information Security (CNIS 2003), pp.79-84, Dec. 2003.

Katsuya SUEYASU, Toshihiro TABATA, Kouichi SAKURAI,
"Notes on Secure Integration of SELinux Access Control Configuration Items,"
Proc. of the Symposium on Cryptography and Information Security (SCIS2003), pp.287-292, Jan. 2003. [PDF] (in Japanese)