Design and Implementation of Linux Application Sandbox Based on Multiple Security Mechanisms
Author:
Affiliation:

Funding:

Ethical statement:

  • Article
  • |
  • Figures
  • |
  • Metrics
  • |
  • Reference
  • |
  • Related
  • |
  • Cited by
  • |
  • Materials
    Abstract:

    Linux application sandbox is designed for providing an independent, secure operating environment for untrusted applications. The sandbox has its own independent working directory, and the operation of applications in the sandbox has no impact on the host. The sandbox provides filesystem isolation, system resources isolation, physical resources isolation, capabilities limits and mandatory access control (MAC) policies, adding memory protection policies like address randomization and non-executable memory page protection. The sandbox increases several security mechanisms relative to existing sandboxes, improving the system security and protecting the system and user’s personal privacy.

    Reference
    Related
    Cited by
Get Citation

LI Chen, TU Bibo, MENG Dan, et al. Design and Implementation of Linux Application Sandbox Based on Multiple Security Mechanisms[J]. Journal of Integration Technology,2014,3(4):31-37

Copy
Share
Article Metrics
  • Abstract:
  • PDF:
  • HTML:
History
  • Received:
  • Revised:
  • Adopted:
  • Online: July 22,2014
  • Published:
Baidu
map