DAEMONSEC: A Framework for Security Auditing of Linux Daemons
Presenter Type
UNO Graduate Student (Doctoral)
Advisor Information
Robin Gandhi
Location
CEC RM #201/205/209
Presentation Type
Poster
Start Date
22-3-2024 10:30 AM
End Date
22-3-2024 11:45 AM
Abstract
Linux operating systems play an essential role in sustaining today's technological world. From data centers to embedded devices, the Linux operating system is ubiquitous. However, its ubiquitous presence also makes Linux a key target for cyber attacks. Among other parts of the Linux operating systems, a significant diversity is observed in the running daemons on a given system. This diversity is often needed to support different services and protocols that cater to various use cases. To manage the security risks introduced by daemons, security practitioners need a framework to assess any Linux-based infrastructure. This project outlines how daemons can be categorized, analyzed for interdependencies, and evaluated for exploitability as part of a new DAEMONSEC framework. We present results from applying this framework to a Linux server that supports compute-intensive tasks in a research environment.
DAEMONSEC: A Framework for Security Auditing of Linux Daemons
CEC RM #201/205/209
Linux operating systems play an essential role in sustaining today's technological world. From data centers to embedded devices, the Linux operating system is ubiquitous. However, its ubiquitous presence also makes Linux a key target for cyber attacks. Among other parts of the Linux operating systems, a significant diversity is observed in the running daemons on a given system. This diversity is often needed to support different services and protocols that cater to various use cases. To manage the security risks introduced by daemons, security practitioners need a framework to assess any Linux-based infrastructure. This project outlines how daemons can be categorized, analyzed for interdependencies, and evaluated for exploitability as part of a new DAEMONSEC framework. We present results from applying this framework to a Linux server that supports compute-intensive tasks in a research environment.