Information Flow Secure CAmkES

Amit Goyal, Akshat Garg, Digvijaysingh Gour, R. Shyamasundar, G. Sivakumar

2021

Abstract

Component Architecture for microkernel-based Embedded Systems (CAmkES) is a framework used to build embedded systems software on the top of seL4. seL4, a general purpose microkernel, uses the underlying Discretionary Access Control (DAC) capability model to ensure confidentiality and integrity of the systems built on it. These systems are not information flow secure as DAC model only considers direct read/write accesses and does not consider the indirect accesses. In indirect access, an unauthorized subject can get access to an object through another subject which has the direct access to that object. In this paper, we model and implement information flow secure CAmkES (IFS-CAmkES) which ensures complete mediation by RWFM monitor which is based upon Readers Writers Flow Model (RWFM), a Mandatory Access Control (MAC) model. IFS-CAmkES can be considered as CAmkES enriched with MAC based security. Prototypes of some real life examples have been implemented on IFS-CAmkES. We also compare the performance of CAmkES and IFS-CAmkES based systems.

Download


Paper Citation


in Harvard Style

Goyal A., Garg A., Gour D., Shyamasundar R. and Sivakumar G. (2021). Information Flow Secure CAmkES. In Proceedings of the 6th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS, ISBN 978-989-758-504-3, pages 237-244. DOI: 10.5220/0010462602370244


in Bibtex Style

@conference{iotbds21,
author={Amit Goyal and Akshat Garg and Digvijaysingh Gour and R. Shyamasundar and G. Sivakumar},
title={Information Flow Secure CAmkES},
booktitle={Proceedings of the 6th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,},
year={2021},
pages={237-244},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010462602370244},
isbn={978-989-758-504-3},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 6th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,
TI - Information Flow Secure CAmkES
SN - 978-989-758-504-3
AU - Goyal A.
AU - Garg A.
AU - Gour D.
AU - Shyamasundar R.
AU - Sivakumar G.
PY - 2021
SP - 237
EP - 244
DO - 10.5220/0010462602370244