Automatic Encryption Method within Kernel Level using Various Access Control Policy in UNIX system


KIPS Transactions on Computer and Communication Systems, Vol. 10, No. 4, pp. 387-396, Apr. 2003
10.3745/KIPSTC.2003.10.4.387, Full Text:

Abstract

Many studies have been done on secure kernel and encryption filesystem for system security. Secure kernel can protect user or system data from unauthorized and/or illegal accesses by applying various access control policy like ACL, MAC, RBAC and so on, but cannot protect user or system data from stealing backup media or disk itself. In addition to access control policy, there are many studies on encryption filesystem that encrypt file data within system level. However few studies have been done on combining access control policy and encryption filesystem. In this paper we proposed a new encryption filesystem that provides a transparency to the user by integrating encryption service into virtual filesystem layer within secure kernel that has various access control policies. Proposed encryption filesystem can provide a simple encryption key management architecture by using encryption keys based on classes of MAC policy and overcome a limit of physical data security of access control policy for stealing.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
I. J. Deog, Y. J. Seog and K. J. Nyeo, "Automatic Encryption Method within Kernel Level using Various Access Control Policy in UNIX system," KIPS Journal C (2001 ~ 2012) , vol. 10, no. 4, pp. 387-396, 2003. DOI: 10.3745/KIPSTC.2003.10.4.387.

[ACM Style]
Im Jae Deog, Yu Jun Seog, and Kim Jeong Nyeo. 2003. Automatic Encryption Method within Kernel Level using Various Access Control Policy in UNIX system. KIPS Journal C (2001 ~ 2012) , 10, 4, (2003), 387-396. DOI: 10.3745/KIPSTC.2003.10.4.387.