Policy Enforced Remote Login

Abstract

This document describes enhancements made to the popular OpenSSH authentication service to restrict the execution of OpenSSH processes by applying a ring-based program execution policy. We also apply a label-based mandatory access control (MAC) policy to limit a user's login shell to run at a specific security level within the user's authorized security clearance range. While still rudimentary, these enhancements illustrate the usefulness of a ring-based execution mechanism for restricting program behavior.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 01, 2003
Accession Number
ADA412735

Entities

People

  • Thuy D. Nguyen
  • Timothy E. Levin

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Application Software
  • Authentication
  • Clearances
  • Computer Access Control
  • Computer Programs
  • Computer Science
  • Computers
  • Computing System Architectures
  • Cybersecurity
  • Emergencies
  • Homeland Security
  • Information Systems
  • Mobile Devices
  • Operating Systems
  • Security
  • Transport Protocols

Fields of Study

  • Computer science

Readers

  • Clinical Trial Research.
  • Computer Networking
  • Government and Public Administration Law.