|COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring.|
Design and implementation of a CC CAPP-compliant audit subsystem for the Mac OS X and FreeBSD operating systems
If you have a question about this talk, please contact Saar Drimer.
Completing the Common Criteria CAPP (C2) security evaluation of Apple’s Mac OS X operating system required the development of a significant new operating system feature, security event auditing. This facility provides for the fine-grained, configurable, and reliable logging of security events ranging from authentication events in user space to system call access control information throughout the kernel. As the leader for the team that implemented Audit for Apple, I had the opportunity to gain interesting insight into the evaluation requirements and process, as well as into the implementation implications of these requirements. This presentation will describe the requirements and how they have been implemented in traditional UNIX systems, as well as how some of the design decisions that make Mac OS X unique impacted the implementation of Audit. I’ll also talk briefly about the later port of this source code base to the open source FreeBSD operating system, and the OpenBSM software package, which provides a portable implementation of the de facto industry standard BSM API and file format originally developed by Sun.
This talk is part of the Computer Laboratory Security Seminar series.
This talk is included in these lists:
Note that ex-directory lists are not shown.
Other listsPolitical Thought and Intellectual History Confronting History, the Archive and the 'Stranger' in Educational Research Applied and Computational Analysis Graduate Seminar
Other talksRecent progress at Quantum Computing and Devices Laboratories ‘Uncovering new “lnc's” in mitosis : an RNA perspective.’ Every Body Matters: Using Action Research to Work Towards Injury Prevention and Health Promotion in Elite Young Instrumental Musicians at a Specialist Music School Should we screen for diabetes and related cardiovascular risk? Phonotactics with[awt] rules: the learnability of a simple, unnatural pattern in English How long does take to change? A review of the timelines for innovation in the power sector and other technologies and the implications for power market design and policy