Skip to main content
SpringerLink
Log in
Book cover

International Workshop on Security

IWSEC 2007: Advances in Information and Computer Security pp 230–245Cite as

Salvia: A Privacy-Aware Operating System for Prevention of Data Leakage

  • Conference paper

  • 638 Accesses

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 4752))

Abstract

We have developed a privacy-aware operating system that focuses on preventing leakage of sensitive data such as personal information. The existing mandatory access control model is too restrictive for processes required to sustain the operations of user programs such as FTP, e-mail client applications, etc. In order to solve this problem, the proposed approach employs two techniques. First, the operating system kernel limits the execution of system calls only if the process could contribute to data leakage. Second, we implemented contexts; contexts are parameter or hints facilitating the evaluation of the risk of data leakage. These contexts also determine whether the kernel allows or disallows the execution of system calls. These techniques make it possible to realize a more adaptive and flexible data protection mechanism than the existing ones. This study describes the proposed approach.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Bell, D.E., LaPadula, L.J.: Secure Computer System: Unified Exposition and Multics Interpretation. MTR-2997, MITRE Corporation; ESD-TR-75-306 (May 1976)

    Google Scholar 

  2. Organisation for Economic Co-operation and Development: OECD Guidelines on the Protection of Privacy and Transborder Flows of Personal Data (2004), http://www.oecd.org/document/18/0,2340,en_2649_201185_1815186_1_1_1_1,00.html

  3. Trusted Computing Group: Trusted Platform Module (TPM) Specifications. https://www.trustedcomputinggroup.org/specs/TPM/

  4. Microsoft Corporation: Next-Generation Secure Computing Base. http://www.microsoft.com/resources/ngscb/default.mspx

  5. Bernaschi, M., Gabrielli, E., Mancini, L.V.: REMUS: A Security-enhanced Operating System. ACM Transactions on Information and System Security 5(1), 36–61 (2002)

    Article  Google Scholar 

  6. Edjlali, G., Acharya, A., Chaudhary, V.: History-based Access Control for Mobile Code. In: Proceedings of the 5th ACM Conference on Computer and Communications Security, pp. 38–48 (1998)

    Google Scholar 

  7. Myers, A.C., Liskov, B.: Protecting Privacy using the Decentralized Label Model. ACM Transactions on Software Engineering and Methodology (TOSEM) 9(4), 410–442 (2000)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Graduate School of Science and Engineering, Ritsumeikan University, Japan

    Kazuhisa Suzuki

  2. College of Information Science and Engineering, Ritsumeikan University, Japan

    Koichi Mouri & Eiji Okubo

Authors
  1. Kazuhisa Suzuki
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Koichi Mouri
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Eiji Okubo
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Atsuko Miyaji Hiroaki Kikuchi Kai Rannenberg

Rights and permissions

Reprints and permissions

Copyright information

© 2007 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Suzuki, K., Mouri, K., Okubo, E. (2007). Salvia: A Privacy-Aware Operating System for Prevention of Data Leakage. In: Miyaji, A., Kikuchi, H., Rannenberg, K. (eds) Advances in Information and Computer Security. IWSEC 2007. Lecture Notes in Computer Science, vol 4752. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-75651-4_16

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-75651-4_16

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-75650-7

  • Online ISBN: 978-3-540-75651-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation