%0 Journal Article
%T Enhancing the LSM Framework to Build Audit Support Mechanisms<br>通过扩展LSM框架构建审计支持机制
%A CHEN Hui
%A SHI Wen-Chang
%A LLANG Hong-Liang Institute of Software
%A Chinese Academy of Sciences
%A Beijing
%A <br>陈慧
%A 石文昌
%A 梁洪亮
%J 计算机科学
%D 2005
%I 
%X LSM (Linux Security Module) is a security-model-support framework which is now an important part of the Linux kernel. It supports security mechanisms by providing hooks mechanism. Audit is an essential part of secure operating system. Mainly focusing on access control, LSM is lack of ability to support audit. It is significant to extend the LSM framework to support audit mechanism which can provide an interface to audit system or intrusion detection system. This paper presents a method to enhance the LSM framework to support audit functions. It discusses how to add audit hooks into the LSM framework and how to insert hook functions into Linux kernel functions. In this way, an audit system is implemented as a main part of the SECIMOS secure operating system. Also, its performance is test- ed and analyzed.
%K LSM
%K Audit system
%K Linux<br>扩展LSM框架
%K 审计支持机制
%K Linux内核
%K 安全机制
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=64A12D73428C8B8DBFB978D04DFEB3C1&aid=6B9D56A5B91612C5&yid=2DD7160C83D0ACED&vid=9971A5E270697F23&iid=38B194292C032A66&sid=3986B25773CB6C30&eid=2922B27A3177030F&journal_id=1002-137X&journal_name=计算机科学&referenced_num=1&reference_num=7