Great news! I will be giving a talk at Securi-Tay V on AppCL LSM.

Securi-Tay V is being held at Abertay University, Dundee. Friday 26th and Saturday 27th of February.

AppCL LSM: A Linux kernel security module to implement application oriented access controls

The talk will cover three areas:

ACL’s and PACL’s

• Looking at the issues with current user oriented access controls (ACL’s), and discussing the added benefit of application oriented access controls (PACL’s).

Under a traditional ACL, applications inherit the privileges of the user than runs them. This often granting the application higher privileges than it requires and potential leverage for Zero Day Malware.

The Linux Security Module (LSM) framework

• The Linux Security Module (LSM) framework and how it allows development of additional kernel level security. Current Mandatory Access Controls (MAC) solutions, such as SELinux, use this framework.

AppCL LSM

• AppCL LSM – Linux kernel security module built using the LSM framework. A discussion about how AppCL uses the LSM framework to implement an application oriented access control proof of concept. This is the subject of my final year project at Leeds Beckett University, studying BSc (Hons) Computer Forensics and Security.

If you are attending the conference it would be great to see you. If you are interested in the talk I will be giving or in AppCL LSM please contact me.