fedir/ICFS
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Filesystem with Interactive Access Control for Linux
16 Commits 1 Branch 0 Tags 59 KiB
C 69.4%
Makefile 30.6%
ff6a8713d3
Go to file
fedir ff6a8713d3 Removed useless comments from main.c.
2024-11-20 10:35:58 +01:00
docs Added old docs 2024-11-13 16:27:09 +01:00
sources Removed useless comments from main.c. 2024-11-20 10:35:58 +01:00
.gitignore Fixed gitignore doing nothing 2024-11-17 20:30:09 +01:00
LICENSE Initial commit 2024-11-13 15:26:45 +01:00
Makefile Added source files initialization. 2024-11-20 09:28:20 +01:00
README.md Reformatted README 2024-11-17 20:23:00 +01:00

README.md

ICFS -- Interactively Controlled File System

Motivation

Traditional access control mechanisms in operating systems allow the same level of access to all processes running on behalf of the same user. This typically enables malicious processes to read and/or modify all data accessible to the user running a vulnerable application. It can be dealt using various mandatory access control mechanisms, but these are often complicated to configure and are rarely used in common user oriented scenarios. This thesis focuses on design and implementation of a file system layer which delegates the decision to allow or deny access to a file system object by a specific process to the user.

Goals

  • Analyze the problem and design a solution
  • Implement the solution using the FUSE framework
  • Test the solution and demonstrate its benefits

Docs

Credit

Student: Fedir Kovalov

Supervisor: RNDr. Jaroslav Janáček, PhD.