Security for extensible systems

R. Grimm, B.N. Bershad
Proceedings. The Sixth Workshop on Hot Topics in Operating Systems (Cat. No.97TB100133)  
The recent trend towards dynamically extensible systems, such as Java, SPIN or VINO, promises more powerful and flexible systems. At the same time, the impact of extensibility on overall system security and, specifically, on access control is still ill understood, and protection mechanisms in these extensible systems are rudimentary at best. In this position paper, we identify the structure of extensible systems as it relates to system security and postulate an initial model for access control.
more » ... for access control. This model extends the discretionary access control of traditional operating systems to encompass extensions and, by using ideas explored by the security community, introduces a notion of mandatory access control. While a new access control model does not address all aspects of system security, we believe that it can serve as a solid foundation for developing a fully featured and flexible security model for extensible systems.
doi:10.1109/hotos.1997.595184 dblp:conf/hotos/GrimmB97 fatcat:3kkwkmsls5datkap5j7typzmxq