A decade of OS access-control extensibility

Open source security foundations for mobile and embedded devices.

[1]  K. J. Bma Integrity considerations for secure computer systems , 1977 .

[2]  George Neville-Neil,et al.  The Design and Implementation of the FreeBSD Operating System , 2014 .

[3]  Robert N. M. Watson,et al.  Capsicum: Practical Capabilities for UNIX , 2010, USENIX Security Symposium.

[4]  Robert N. M. Watson,et al.  Exploiting Concurrency Vulnerabilities in System Call Wrappers , 2007, WOOT.

[5]  Stephen Smalley,et al.  Integrating Flexible Support for Security Policies into the Linux Operating System , 2001, USENIX Annual Technical Conference, FREENIX Track.

[6]  Mike Hibler,et al.  The Flask Security Architecture: System Support for Diverse Security Policies , 1999, USENIX Security Symposium.

[7]  James P Anderson,et al.  Computer Security Technology Planning Study , 1972 .

[8]  David A. Bell,et al.  Secure computer systems: mathematical foundations and model , 1973 .

[9]  Jerome H. Saltzer,et al.  The protection of information in computer systems , 1975, Proc. IEEE.

[10]  Todd C. Miller,et al.  Security-Enhanced Darwin: Porting SELinux to Mac OS X , 2007 .

[11]  K J Biba,et al.  Integrity Considerations for Secure Computer Systems , 1977 .

[12]  Daniel F. Sterne,et al.  Practical Domain and Type Enforcement for UNIX , 1995, Proceedings 1995 IEEE Symposium on Security and Privacy.

[13]  Bryan Cantrill,et al.  Dynamic Instrumentation of Production Systems , 2004, USENIX Annual Technical Conference, General Track.

[14]  Timothy Fraser,et al.  Hardening COTS software with generic software wrappers , 1999, Proceedings of the 1999 IEEE Symposium on Security and Privacy (Cat. No.99CB36344).

[15]  Robert Nicholas Maxwell Watson,et al.  New approaches to operating system security extensibility , 2011 .

[16]  Crispin Cowan,et al.  Linux security modules: general security support for the linux kernel , 2002, Foundations of Intrusion Tolerant Systems, 2003 [Organically Assured and Survivable Information Systems].

[17]  Steve R. Kleiman,et al.  Vnodes: An Architecture for Multiple File System Types in Sun UNIX , 1986, USENIX Summer.

[18]  Robert N. M. Watson,et al.  Design and Implementation of the TrustedBSD MAC Framework , 2003 .