From 904eb31f24061d4651824c3af6892a48fc8210e3 Mon Sep 17 00:00:00 2001 From: BritishTeapot Date: Wed, 9 Apr 2025 14:30:31 +0200 Subject: [PATCH] Fixed a typo in current solutions section --- main-en.pdf | Bin 898858 -> 898867 bytes motivation.tex | 2 +- 2 files changed, 1 insertion(+), 1 deletion(-) diff --git a/main-en.pdf b/main-en.pdf index 7bacd325838159007ecb4642cf3d343487e64880..15ee1e386f37e0f5f8bab594d856ad7dd0e245cd 100644 GIT binary patch delta 4200 zcmV-u5SQ<&?l!aTHh_cygaU*Egam{Iga(8Mgb0KQvR=i}keZ*SG^ zI7*|`+)%r~PZIw5>ARPB6bdH+ZaN;-_WnBP z!*uiI?(cN9aL2FS-MN*oXTZ82mlN;pkyj`FxRbw*e(joW3J7(-NR^mO)SAhn@Iw{t zvLf*FFk&74n)2TM{L@eGez?2YM`7lD`tkdp?>_wa!zX0_`mk{n`H9M5S6Y7} zyEr1Su7KsF0O=?{gX^S0w>PkARn=47ce-hwZ}QN4je8{?H1Q?&rqj({d4?PM{$>wT zdYt!wKSCe-X2wNEX`b|8WF4W@$FBZY5XGhLaNfk^YS7qvyw@c@zy9%NA4j;SdFBC~ zDa|<6lb#G7Xt!4xfB}x7az98iKE{7MngRIA3$NzI&A`lY3;5#Rspsct${G2?cjT!t zBb+)cV1}JXeUB&mHl6zMasrMIJZ+chWTx<;OJv(rAjLQgz4te{@_NVPIO(o5ujxR+ zx zkvOh^q`33IEJiGRT>m`u$3eHU&^=Cg=AOzN^xVi!x|8Mm4nVYVEZ#D+TOx=Q@xr_b z3t1>Ez{_|hq?wXY!^FO0Nx@FQR)>d}K;(eWmkCXy+Yw0b#P(0}9;j$tGAvW|p^{t-jl84sa$qY3?PX^m@ zBWh=BoMK|%fhP?!VV#Ddkm-fb^`bhKJ+CzMXhPE1V^Q`^UDhPOD06=*4!z@4H!`p@ zhz)!*Pm}4!+SwQ&wQMLiv4 z)0YywGE|hW^qj?$8w_OhlA_{Z5Z{^YL-s4+?W)11IG(2G>n&2qU7tq5s#sM2T z9-=260fXyh-35Hy%gzb<*odIRsF(njVKL-LK+wMkbiR$W5C?x0WdXC2UibrS)*Y?0&iSXAB9X;K;y^@A?X^O2&g;&k5!W+J@JHA!*zZoMmDV&Y}}&9 zO~82Jo#5NU+;nEp_l>ks^yriIG>MZQxx;z`d);(Mjm?9?cor7#v`pbPH%f zfu$j-C9QojZa#kko#UG1BCd(@!cP+$)|7hM3Vy<9HKrB@b+c#L#VYcnOVM4sqlht% z&%tP+SVJb3abzk=gT^EC_#zH@gLjoe7#XIPvH!e*$YU_m_+~;Sf13R1Y4bQr1%4K| zSPorY0y5GF;(iuB?441g)z&vd!#qKNGi`DNsEPd)cDsMH*r+#&iZ3`6_K5x`*FE)( z>GrO7OBSi}TG{OD)tMtMwAl>Z1FOnf*8zKW~ZUAgh=!Q*%d)@l;zHjWgN&6?b1eORzI+7 z!$oE<-Ax#S4o1JH#-U#LKTEG}N|KFK>}MnK7X@&mbFM4jCE^uo zJDP^A^(cOMoJ%xkCvo#^`EszN)GomXSK{yLuQq>nqc$6MW5WZO!?9>xVJ`5yeh^`1 zotpz1QNa|Au*iUV5)~ZUD-@W6zBN|52J>Byrn1XHwrhh2PFH|h)#EhO_q35LX^+AK z-Zy&sCu!GLz}08G$q-(?ynfjme(E#>qQngQbM%D+J&H23#JfG8KeXV|KC3SXzpU`? z#GQX(G)S5*cp7EmfuCn_I}}(QWy1OZOyN{$E%Wez7ao4Z1i^m-NGO`49B`3vW)sp71J!?4WR+&VN;V>wFeyNpFbn%5^ z2CE|P7SYFaTA79d7Y~d-Afufp)WUmZM3f!mcjYq^!3)4imox)c_%`SpH`C(jM1fTR z$;X+JCL81+r5Q0g4MNW)wj;MCO@c9{KI{9sfegUNI)pBGvQ>b=4pC(10=03kG`@f5 z=c4J*z*`*Z5~gl)zo^!AT4-~}5^w~UFlaGAP(P_w`@+b|Jk+HaD6lj0^x9^fHsG#X z33Z1_EcU9P+std&B_w%8Kb5&{o#?5q5v $jKUPUS=_q016nPP))ZC1Y4131OEt_-Q1 zP~aQkFN^~&eLZ$E%LNM1z~q&x6M*Y_lF^6B$XG~?D!XidFxdu;Cf*7@!=T(O2yfDTZzDOp_{47>iPVuGMB;PKbaJK4)a-^d>MZXkbcAtsgL5uPx} zrPdN)?QT5Rl($1;!^I(al2wxhiG=RdRKpV?~$;c68-3Z85M>Y_UuyhQ4)VhieVm z;)I8XG_p4MVqJi%sJvuv+5CUMY-uTNo(Czr z4_IviNnzrgMB>rna4W7uDy6=t8LcZdaR+7bhA z%seg$a{X<)ii=1b2`qm7gYX8BhH@h<8+vcQ|A5qV1H?$Bj(-TT;!Wt>|`1`5f4-g@>cwzU8)q(D_%|Kib3`B}P5#Oqi$`9u(YE=)Q zP0r%pw5$ddQw)zc)S;YPoG8~kNCdS29ae^0keDOmGWhQ%HllxmW8Kybu@J?pGzT@< z*#J2;HxB*WiN@C*Ph$fMgxjtfAgy9*Z{4@8Xrh5~;cJq5e`94rvrf#Ut^&Min&HAm zE-f+=F_zp`9JEL{&K1MRW>Y;Fwoakc{0n8Vw3dCMIB-oacgM~IyYPdFg!y3k7KBsW z*Er${KeJWW-!fBwbsrz))1pFnEBcuE`Ae{?pbzAZpOoQ?GLCFPc#u}dn4&bhPp>}8 zcgk#+Lbw2R2`Wj2ewsy;06_urB49|;T>*(Z6uR&`q#t8`4h1$eg5af80i6^@>7~Mqkw=I{T9||3R->)iA0F)xc$^%qj;#fW=&s~FAFMg^t zq!ak@3_%CMTNs2PcYTh(aNl_1_;KW>oC`+SFg{*sdMcWZ-MZ#GA=fWoS>@AFZp#l5 zRw_(;X3xwU^zxmRV`0Nos?zUW=;-Xg>R^CTD2eGsLq%j&J0J^(J0J|VJ0J~_eFQTwFf*6XoeduZGcYhSxAUD1w-iu9H8V3qH$pT;MnN|< zHZwOfMng43GBz+VG&wXzI72}`AUr}fGc!XsLNrB2K{quvGdD9vLp4M)HZUL!<%7N85=uN~%edXuHrxNJ9{zb)pTEra&5P80{cw1{9)=pbe20fnu~#v;(9i zpcL&0+8}8e*o-!hHb7bqD$o|t`bjIn7PKX_he@}BDo_pT%()^*wVkvE)RJbw4$y_x z2@rvVqzbz&@yCp!c1zs2t!R%WZjLMJ0G*cjds*pTpyfUU_JRGN8}wM>?l;ah?Y|eJ z`-vD=UjV;43(9}j1ihdSXs@)1+TFo;_3M1X%fM||Q2Cyom;*x=e^e|f)zRwAM=Z!L zN*lH0odb#vS@Q0)ie$5KOa9xf^e~tJli&!LvM~50cI@jV;B1WVu50i#m;tjO2NuD+ zh2IZq$O1UZ;pse%5w!sA%cJ19g+DcG@Con;SOP2HF>n$*4pzY$IE9@aJBQe^bvC@bWf`hHpuuA$(}zpN&e@E|}k^E&OXh8vWtbA2NTjg*W9K zPeXVaz0AT}SEZ>J%6SK8?(w*26_3jqIlO^Q2xf4fD=Z#7usw0|6m*TOXz zv-%!@34NDEWuNPbUY^iRLzDPEBCX&Qk%p`h>1432r^|f5MGf<+4pP-=ai#eoi?RzU z9Hh`ngcJRkMID7Ia7FqlFkw;Wd1;dj)*|trpSGy$nhJQ*9|bv!_6XqId5rsI?FusS&Y-q z$9QpjjP>g=UO5-z>}ZVF?!R=i}k8Z*SG^ zI7*|`+)%r~PZIw5>6@2$6bdH+@0Xwy3KW0s?$w+3QM^+MC_uV9?CdZ*>aN;-_WnNT z!*uiI?mN0#xZ_vv?%c}PGhp41%Zc~)$g2~7+{s@@zjjSG1%$d^q)JRCYRzO(_@Rn+ zSrPbo7%`8bANn^iO?hvB{^_T8Kiu8yqcHP6{rLUQcOQQI;S;ideb_jP{6yujD=mMK zT^tcuSHN;ofOM3f!FAH0+Z$N5s_LokJKZ$TH+ks2#=Q~`n)niX)9GffJi`rrf3t@v zJaDmg;(?9W?<&H1$=Su)bn#R<&6B{JMz?+ z5l$TzFvHHHzQ>b&n@;_BIRVE9p0>+$GE?}_C9-WQkYXH$-us(edA;LtoOD;3*L0xZ z@+kEI2Su^~zK6nggjb0VW`MiK=W#ME(|eFj5_|tP<-~+~j6Z)K2W|uj=+DOl6X)%+nzYC>cca4*e&rLPm=>Y+8WR-dXnO{x}0i; z4y&I}yRA?j7X@$m%c(}OM@oUZwe%KVC?0h5a9I(85F2`)`c_YM$wTYzWQLlcCxh*{ z5w){5PBF3Xz>|iVuuj8J$n?VJdQlzAo>v-rG$Cp1u_*hdE^CrslsSJDhu(3j8yVOc z#0I{Zr^$3bc0dHT5#U=ebrQ>j z=}U=a-eKqg8Z9?8Kb$I{NFQzzTz)p(_jp5Mm)3beahJMz&22ITO~Y)#|Pf@w0| z!qTnP&kYW$wzZ7(OS6BP0!(<`+J@3LGoP)}av|_;)DTS)Uu} zC%6E)F?yWbhz9`d(Y%c4+pdQN5rsM3xAN$A@A0icvxan98lEr`O>mUw3+Uk*kd|K z8Qg{QqVvR)+&X{`fj6$Hk3yy^pmF4dkaUes1XLb?$EwMZo_Ip5;X1z(Bb!zXHg3`5 zCSbhqPVntvZaOpQ`$pO*di2S9n#4(u++n=|z5`GZoKMf_=p=M`kLC<*3=S|)x&^eL zz|xS^lGZ*MHy?k2&T&n05!Xa{;iriWYf3$B1wUc58dD2{y4kbrVioz(rRc8RQN$R> z=U}u@tRWN2I5HKbLF18md=ZDd!MjQ!j0{uD*ni$Y>z?|? zbbHskC5trli#W2(vr3{S35TSqbxT+XLhrE#SkJ3LxgEsDZ0OKPksR&H7Z_%@L|*%- zhpJ%%j={o#pAf}~m4ODU8oaD7Gg<-wZk)7Goj=GZ3fn?wnEPoO{?8KL+ld!)0BzYq zQS29L4I+Oh1K8qa3o^aHoRh%y>K^S z3~Cqsk>-L(7uDs68#ki(fTSMfiJztUm8%P^)^JhWeg1k|pg?c)_?!F_#JUl4a$;oXVr!pM*8 zfB=7Kl!*s^p2fvb5OtIZYtEU%Y0t=;ncAv%jA-8SbKi4bI6rajaxi+51TX|#HjSwS zzu~n8g`vY{r&|MANdj44iNEYpuknl~YMH|cRS40HgadRar2OL+rSp~>tzoaNyLxOd zvOe&YfDVe>DBoK|o7vR=0a7paQZApn>OsUWMzHT7eH?j_)3!ZEaV6a0J8Mr`g+$)Xm`MIb#H1K~G zhq{ERo7^utb)5p*Jh22E!6gh@EDzL5s@1+QvN8{KDV7Ng%sjoe8Kw=c>sG?rVG>il zD&Dw=gofG@0lrg-AfXb$__A&Kb`={vaQ=b@BX$>2>Y1t`st^PzgaHq2dYkGpouH=j z)j+v>!~i+Tis>8BR@UkfcICui6e)i;MJgxqv^ySoi4-nuR=(B)IK^*$7*aWTz&FBQ z7zbSDdhBGD3%8(wi7Hhh0N3>-qYsmjv5*E;cG>=7x~xn!HFg%PR4~FkQJN+x?*_D7 zMkRm(%S(1|NhB!|7E_k&GQY?IMV2f|A=t=vG5BK9|H;R%CW0@wiS zbmO_E932`Pz8%S1h6;*dW|DtY9(U+1*{!^g(0 zp=2>Bt>jqq`ao6hpesOe<+5vZUwdSvk+s1W>jGT$+joDTtos$VDampgg1aRlon~((0lv+2c)JOAVw->U9o6gypF76Do}O&f);5r+bAMG zj9tES0A|h*$x_~mlQ)0NT^7Qpkk}lf?yz0^ojUZg;aSsSy8LppEfy* zd(*NSR7Wv9-cW~fZgHYq^B@t_0(4jzZb4#>j7#2sn9+y|j&*-qH^f2|ukstzU}pp5 z)Z94qb0->KcRY;^ED&zHYJhx-sl9dIwt9&M%7w2<>V4~!$q+NCtM+c1X1K7C%ZQ9b zj3u`f2Q3ngbA>Om*;M<5ty3r~|3c|2t!1Am4qTH<+p#mjF8p93VLn*C``{G!<&Aj4 zPiocmcgtVhhem(-jHnRaiauO^{u1me=mWXq=VSPKj3ZkR9^}(8rYOzs)2om2O)}f1 z5H7$sO)5Wyewsy;070?wB49|;T>%+86t(c1qaR~p4#hVmUlczeSPC{yQBg>sn%h7% z_oSaR2Kp&Q$UR9);UlGW7SN}yW5y8Vc#?@HyEGWxMDu@lEb0Mm0%s|mbJv2GIBE*h zWnIJLAT?>8N4rX^E1`>6El`ROOAb(aiDUV2Ja-Ldz4%$ukWS!-G6Wq2Z($II-1RyB z!hPe38WTscI%q&gj~OTQI*d`xve`ySfViPnLRUa(91Vfj)e_V zsUp93p`#wN1FM4pMxhp_7Y!AWamn1jz})ro-QBDI0%Xyl=$An$3KNG@APR?5APa|6 zAPl!tAPs(f1Tr@?IhWO)4IczDH#9l7_?->66j3xpG&L|dG)6HoF*HO%I5aRbLNG8h zMn*$9H$*`~LNz`hJTyc!H840dMlmrlG(QTc8wZc|!rYeNZU2JmgiLrMxbEP(-lO znrJjN!Nyn9z8Y@=&p;mDe{Q^S$^^*AYr-3&3_tc4#v8>Oq$~m3@uu(wC`-W( zyyJNNlx3hC?*v{SWd+!Yw}kf?|an1 znn0tu#Iy2te}hLrv$=wCc`eSl+-8h<@bad)wC);EuDP z>?bYI1A2k>N}H(N9f;rlBA@UIaGMrXT+tKrV90{v0!Q)^FtbixM8SoTX1!uuI(xeumal9IbcJXQ#n#9u(!Lo(l z_h_Daf2NQhZ?$Ont~?sThZg?Qpi=EZ_KU;E|JA71^T@E2QnPs#B#gjdi@E&T0< zJoQ2uzrmS%GVUuZ{G(Q*>VO(hY2p1|d4%7SVqa_F!#CyCvA_XTGib2z-)}U~2wFjl zg`1zrV`Ke(khRFB<*8lT!9k!4fc$waN;-X;e?`gLnyh)+KMuv~#Wk6*`ffl7eWyjG zpX!Mop3qH0llWeg-ryWcQ_iAvGQ`%?Wxmg%dUdTIU{t5YmF9;m%Br{g5e8aNB+-vs z)E;VpE7DJcNsBrz%R9zoy(IbbGZuAjeG!@TCqd4lLtDp4fB4hjltn$=@(8OZgnrSY zf8J~I$e$;5e%YeF7v-(+L(0_|i~4WLBaVKRfo{uetn22|#hnBph(HRYfv)fj*anI~ zF(?7sK`Gb)$}F1vLW`DL^xof66&BsPEw$59wj#C5QbQM{DlN6PAys9mt6QVhmb!LF zs>V_uFG|%~>c@;!ouzZnOVwNYoy$@UWS0K#1F1&KJeTh*bKb{TJ0Ihv#uyjBj`8ZH z80&*EUjH-3TOY-^v>4;Y*rMxI5N5Le};pv}b8q9!MFb8sA9_Wun m|0KFbbb~Bd=EJdg`Rh~ef5|ZL0GA544Iv0I3MC~)Peuw+SpD7r diff --git a/motivation.tex b/motivation.tex index 20b8dab..948c181 100644 --- a/motivation.tex +++ b/motivation.tex @@ -39,7 +39,7 @@ Additionally, all the above solutions share a significant drawback: they necessi While some solutions offer automatic inheritance or assignment of rules and access control policies, they still need extensive manual configuration. Even if inheriting all access permissions from a default value were practical, installing new programs would always necessitate updating rules to adhere to the principle of least privilege. -Another problem of these solutions, is that their policies are granted forever and the user is never informed about the actual usage of those permissions, which makes them more vulnerable to attacks by proxy. For example, if the program \verb|cat| is allowed to read contents of the file \verb|~/secrets/text.txt|, malicious program may execute \verb|cat ~/secrets/text.txt > ~/stolen-text.txt| at any time, without any warning and regardless of whether the malicious program has access to \verb|~/secrets/text.txt| or \verb|~/stolen-text.txt|. If the user only granted read permissions to \verb|cat| when they are actually using the program themselves, such attack could likely be avoided. +Another problem of these solutions, is that their policies are granted forever and the user is never informed about the actual usage of those permissions, which makes them more vulnerable to attacks by proxy. For example, if the program \verb|cat| is allowed to read contents of the file \verb|~/secrets/text.txt|, malicious program may execute \verb|cat ~/secrets/text.txt > ~/stolen-text.txt| command at any time, without any warning and regardless of whether the malicious program has access to \verb|~/secrets/text.txt| or \verb|~/stolen-text.txt|. If the user only granted read permissions to \verb|cat| when they are actually using the program themselves, such attack could likely be avoided. Another solution to consider, is using containerised software distribution, like FlatPak\cite{FLATPAK}, Snapcraft\cite{SNAP} or AppImage\cite{APPIMAGE}. Those types of package distribution systems either use Linux feature called \emph{namespaces} or leverage MAC mechanisms to isolate software from the rest of the system. Aside from solving common dependency management problems, this approach also allows some capabilities of the distributed software to be restricted, like access to camera, hardware devices, but, most importantly, file system objects.