کد مقاله | کد نشریه | سال انتشار | مقاله انگلیسی | نسخه تمام متن |
---|---|---|---|---|
4955453 | 1444214 | 2017 | 43 صفحه PDF | دانلود رایگان |
عنوان انگلیسی مقاله ISI
On the formalization, design, and implementation of component-oriented access control in lightweight virtualized server environments
ترجمه فارسی عنوان
در قالب سازی، طراحی و پیاده سازی کنترل دسترسی جزء گرا در محیط های سرور مجازی بسیار سبک وزن
دانلود مقاله + سفارش ترجمه
دانلود مقاله ISI انگلیسی
رایگان برای ایرانیان
موضوعات مرتبط
مهندسی و علوم پایه
مهندسی کامپیوتر
شبکه های کامپیوتری و ارتباطات
چکیده انگلیسی
In modern day operating systems, such as Linux, it is now possible to handle a large number of concurrent application services on a single server instance. Individual application components of such services may run in different isolated runtime environments, such as chrooted jails or application containers, and may need access to system resources and the ability to collaborate and coordinate with each other. We formalize the access control requirements of such components; our model allows access to OS resources on a need-to-know basis and also controls collaboration and coordination among service components running in disjoint containerized environments under a single Linux OS server instance. Such access control is managed and enforced through a Linux Policy Machine (LPM) that acts as the centralized reference monitor and provides a uniform interface for accessing system resources and requesting application data and control objects. We present the design of the LPM and provide an implementation to demonstrate the feasibility of our approach.
ناشر
Database: Elsevier - ScienceDirect (ساینس دایرکت)
Journal: Computers & Security - Volume 71, November 2017, Pages 15-35
Journal: Computers & Security - Volume 71, November 2017, Pages 15-35
نویسندگان
Kirill Belyaev, Indrakshi Ray,