3rd International ICST Symposium on Information Assurance and Security

Research Article

Enhanced Availability and Security by Rate Control Using Extended Policy Framework in SELinux

  • @INPROCEEDINGS{10.1109/IAS.2007.17,
        author={Pravin  Shinde and Priyanka  Sharma and Srinivas  Guntupalli},
        title={Enhanced Availability and Security by Rate Control Using Extended Policy Framework in SELinux},
        proceedings={3rd International ICST Symposium on  Information Assurance and Security},
        publisher={IEEE},
        proceedings_a={IAS},
        year={2007},
        month={9},
        keywords={Access control  Availability  Computer crime  Control systems  Floods  Information security  Linux  Monitoring  Protection  Protocols},
        doi={10.1109/IAS.2007.17}
    }
    
  • Pravin Shinde
    Priyanka Sharma
    Srinivas Guntupalli
    Year: 2007
    Enhanced Availability and Security by Rate Control Using Extended Policy Framework in SELinux
    IAS
    IEEE
    DOI: 10.1109/IAS.2007.17
Pravin Shinde1,*, Priyanka Sharma1,*, Srinivas Guntupalli1,*
  • 1: CDAC, Mumbai
*Contact email: pravi@cdacmumbai.in, priyanka@cdacmumbai.in, srinivas@cdacmumbai.in

Abstract

In this paper we discussed an extension to security enhanced Linux (SELinux) to build a more available and secure system that has the capability to contain and mitigate denial of service (DoS) attacks by exercising rate control over resource usage. We presented an extended structure to compliment Mandatory Access Control policies of SELinux. Using this extension a system's resource usage by various entities can be kept under control, leading to a more available system.