Path-Safe: Enabling Dynamic Mandatory Access Controls Using Security Tokens

Authors

James MacLennan, Wright State University
Junjie Zhang, Wright State University - Main CampusFollow

Document Type

Article

Publication Date

9-18-2024

Identifier/URL

41591530 (Pure)

Find this in a Library

Catalog Record

Abstract

Deploying Mandatory Access Controls (MAC) is a promising way to provide host protection against malware. Unfortunately, current implementations lack the flexibility to adapt to emergent malware threats and are known for being difficult to configure. To address this limitation, we have devised a MAC method that leverages using encrypted security tokens to allow for redeploying policy configurations in real-time without the need to stop a running process. This work also develops Path-Safe, a MAC security system that focuses on protecting filesystem access from unauthorized processes and malware. We show that our security system can mitigate real-world malware threats with low overhead and high accuracy.

Comments

Publisher Copyright: © 2024 IEEE.

Repository Citation

MacLennan, J., & Zhang, J. (2024). Path-Safe: Enabling Dynamic Mandatory Access Controls Using Security Tokens. NAECON 2024 - IEEE National Aerospace and Electronics Conference, 7-11.
https://corescholar.libraries.wright.edu/cse/662

DOI

10.1109/NAECON61878.2024.10670691