A file system design for the Aeolus security platform
Author(s)McKee, Francis Peter
Massachusetts Institute of Technology. Dept. of Electrical Engineering and Computer Science.
Barbara H. Liskov.
MetadataShow full item record
This thesis presents the design and implementation of a file system for Aeolus, a distributed security platform based on information flow control. An information flow control system regulates the use of sensitive information as it flows through an application. An important part of such a platform is files, since applications use files to store sensitive information. This thesis presents an implementation of a file system that enforces information flow rules on the use of files and generates valuable audit trails of an application's interaction with the file system. My results show that the file system supports information flow control with auditing while performing nearly as well as a native file system.
Thesis (M. Eng.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer Science, 2011.Cataloged from PDF version of thesis.Includes bibliographical references (p. 51).
DepartmentMassachusetts Institute of Technology. Dept. of Electrical Engineering and Computer Science.
Massachusetts Institute of Technology
Electrical Engineering and Computer Science.