Title

Towards Making SELinux Smart: Leveraging SELinux to Protect End Nodes in a Federated Environment

Abstract

This paper describes an intelligent, active, real-time, risk adaptable access control (RAdAC) system designed to extend the benefits of the National Security Agency's Security-Enhanced Linux (NSA's SELinux) by using SELinux not only as a secure base, but also as a source of input features to a Support Vector Machine (SVM) that will classify events/attacks in several categories. By enhancing SELinux with intelligence, it is hoped that the design will lead to real-time, non-signature based defensive systems capable of detecting and taking action against hostile users in the earliest stages of an attack.

Meeting Name

2012 International Conference on Artificial Intelligence, ICAI 2012 (2012: Jul. 16-19, Las Vegas, NV)

Department(s)

Computer Science

Keywords and Phrases

Defensive systems; Input features; National security agencies; RAdAC; Security-enhanced linux; SELinux; Access control; Artificial intelligence; Learning systems; Support vector machines; Computer operating systems; Machine learning; Risk adaptable access control

International Standard Book Number (ISBN)

1601322186; 9781601322180

Document Type

Article - Conference proceedings

Document Version

Citation

File Type

text

Language(s)

English

Rights

© 2012 International Conference on Artificial Intelligence, All rights reserved.


Share

 
COinS