Sécurité des systèmes d'exploitation répartis : architecture décentralisée de méta-politique pour l'administration du contrôle d'accès obligatoire.

Abstract : This thesis deals with mandatory access control in distributed systems. We present a novel approach based on a meta-policy model that allows the decentralised administration of distributed nodes. This approach aims at the security of large shared networks, such as computing clusters, grids and distributed stations cooperating over the Internet. The presented solution guarantees global security properties and provides good fault tolerance. These properties are not available with classical access control models, but are achieved through our meta-policy architecture. Then we expose a verification technique that checks the presence of illegal information flows in the distributed nodes. We also describe how our approach allows intrusion detection extensions that complement the access control. Finally, we provide an implementation supporting various target operating systems such as SELinux and grsecurity.
Complete list of metadatas

Cited literature [74 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-00460610
Contributor : Mathieu Blanc <>
Submitted on : Monday, March 1, 2010 - 5:29:04 PM
Last modification on : Thursday, January 17, 2019 - 3:06:04 PM
Long-term archiving on : Friday, June 18, 2010 - 7:45:36 PM

Identifiers

  • HAL Id : tel-00460610, version 1

Citation

Mathieu Blanc. Sécurité des systèmes d'exploitation répartis : architecture décentralisée de méta-politique pour l'administration du contrôle d'accès obligatoire.. Réseaux et télécommunications [cs.NI]. Université d'Orléans, 2006. Français. ⟨tel-00460610⟩

Share

Metrics

Record views

636

Files downloads

4373