LSMPMON

Performance evaluation mechanism of LSM-based secure OS

Toshihiro Yamauchi, Kenji Yamamoto

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

Security focused OS (Secure OS) is attracting attention as a method for minimizing damage caused by various intrusions. Secure OSs can restrict the damage due to an attack by using Mandatory Access Control (MAC). In some projects, secure OSs for Linux have been developed. In these OSs, different implementation methods have been adopted. However, there is no method for easily evaluating the performance of the secure OS in detail, and the relationship between the implementation method and the performance is not clear. The secure OS in Linux after version 2.6 has often been implemented by Linux Security Modules (LSM). Therefore, we determine the effect of introducing the secure OS on the performance of the OS by using the overhead measurement tool, the LSM Performance Monitor (LSMPMON). This paper reports the evaluation results of three secure OSs on Linux 2.6.36 by LSMPMON. The results show the effect of introducing the secure OS.

Original languageEnglish
Pages (from-to)81-90
Number of pages10
JournalInternational Journal of Security and its Applications
Volume6
Issue number2
Publication statusPublished - 2012

Fingerprint

Access control
Linux

Keywords

  • Linux
  • LSM
  • Performance evaluation
  • Secure OS

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

LSMPMON : Performance evaluation mechanism of LSM-based secure OS. / Yamauchi, Toshihiro; Yamamoto, Kenji.

In: International Journal of Security and its Applications, Vol. 6, No. 2, 2012, p. 81-90.

Research output: Contribution to journalArticle

@article{c26672cbc8634b538d6b42477ffb84b6,
title = "LSMPMON: Performance evaluation mechanism of LSM-based secure OS",
abstract = "Security focused OS (Secure OS) is attracting attention as a method for minimizing damage caused by various intrusions. Secure OSs can restrict the damage due to an attack by using Mandatory Access Control (MAC). In some projects, secure OSs for Linux have been developed. In these OSs, different implementation methods have been adopted. However, there is no method for easily evaluating the performance of the secure OS in detail, and the relationship between the implementation method and the performance is not clear. The secure OS in Linux after version 2.6 has often been implemented by Linux Security Modules (LSM). Therefore, we determine the effect of introducing the secure OS on the performance of the OS by using the overhead measurement tool, the LSM Performance Monitor (LSMPMON). This paper reports the evaluation results of three secure OSs on Linux 2.6.36 by LSMPMON. The results show the effect of introducing the secure OS.",
keywords = "Linux, LSM, Performance evaluation, Secure OS",
author = "Toshihiro Yamauchi and Kenji Yamamoto",
year = "2012",
language = "English",
volume = "6",
pages = "81--90",
journal = "International Journal of Security and its Applications",
issn = "1738-9976",
publisher = "Science and Engineering Research Support Society",
number = "2",

}

TY - JOUR

T1 - LSMPMON

T2 - Performance evaluation mechanism of LSM-based secure OS

AU - Yamauchi, Toshihiro

AU - Yamamoto, Kenji

PY - 2012

Y1 - 2012

N2 - Security focused OS (Secure OS) is attracting attention as a method for minimizing damage caused by various intrusions. Secure OSs can restrict the damage due to an attack by using Mandatory Access Control (MAC). In some projects, secure OSs for Linux have been developed. In these OSs, different implementation methods have been adopted. However, there is no method for easily evaluating the performance of the secure OS in detail, and the relationship between the implementation method and the performance is not clear. The secure OS in Linux after version 2.6 has often been implemented by Linux Security Modules (LSM). Therefore, we determine the effect of introducing the secure OS on the performance of the OS by using the overhead measurement tool, the LSM Performance Monitor (LSMPMON). This paper reports the evaluation results of three secure OSs on Linux 2.6.36 by LSMPMON. The results show the effect of introducing the secure OS.

AB - Security focused OS (Secure OS) is attracting attention as a method for minimizing damage caused by various intrusions. Secure OSs can restrict the damage due to an attack by using Mandatory Access Control (MAC). In some projects, secure OSs for Linux have been developed. In these OSs, different implementation methods have been adopted. However, there is no method for easily evaluating the performance of the secure OS in detail, and the relationship between the implementation method and the performance is not clear. The secure OS in Linux after version 2.6 has often been implemented by Linux Security Modules (LSM). Therefore, we determine the effect of introducing the secure OS on the performance of the OS by using the overhead measurement tool, the LSM Performance Monitor (LSMPMON). This paper reports the evaluation results of three secure OSs on Linux 2.6.36 by LSMPMON. The results show the effect of introducing the secure OS.

KW - Linux

KW - LSM

KW - Performance evaluation

KW - Secure OS

UR - http://www.scopus.com/inward/record.url?scp=84864741109&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84864741109&partnerID=8YFLogxK

M3 - Article

VL - 6

SP - 81

EP - 90

JO - International Journal of Security and its Applications

JF - International Journal of Security and its Applications

SN - 1738-9976

IS - 2

ER -