A configuration framework and implementation for the least privilege separation kernel
Quek, Chee Luan
Irvine, Cynthia E.
Clark, Paul C.
MetadataShow full item record
The Least Privilege Separation Kernel (LPSK) configuration vector defines the initial secure state and the operational configuration of the kernel, including its security policies. Enhancements made to the LPSK functional specification necessitated substantial changes to the configuration vector data format defined previously. Moreover, the earlier format used an ad-hoc syntax, which did not adhere to any standard. This work leverages Extensible Markup Language (XML) to standardize the configuration vector format. The new configuration vector format is depicted in a XML Schema, and its limitations are discussed. A more compact binary representation is defined, with an offline tool provided to generate binary configuration vectors for the target platform. Creation of a configuration vector file is a laborious and error-prone task. A good user interface can ease the process by removing underlying complexities from users. Pertinent features of XML editors were assessed in a survey. Using these as requirements, an XML editor with a suitable graphical user interface was selected.
Approved for public release; distribution is unlimited
Showing items related by title, author, creator and subject.
Storms, Russell L. (Monterey, California. Naval Postgraduate School, 1995-09);The current MIDI-based sound system for the distributed virtual environment of NPSNET can only generate aural cues via free field format in two dimensions. To increase the effectiveness of the auditory channel in NPSNET, ...
Efficient XML Interchange (EXI) compression and performance benefits : development, implementation and evaluation Snyder, Sheldon L. (Monterey, California. Naval Postgraduate School, 2010-03);The Department of Defense (DoD) Network-Centric data sharing strategy for the Global Information Grid (GIG) is to XMLize all data. The goal of this strategy is to ensure all data is visible, usable and interoperable, when ...
Bobbitt, Richard B. (Monterey, California. Naval Postgraduate School, 1991-03);A quantitative analysis was carried out on the performance of turboprop aircraft within a microburst windshear. The objective of the analysis was to provide specific flight procedures for optimal navigation through the ...