LIU Jia,ZI Xiaochao,PAN Li,LI Jianhua

DOI: https://doi.org/10.3969/j.issn.1000-3428.2005.12.018

2005-01-01

Abstract:This paper discusses how to develop the audit module for secure operating system based on the Linux kernel. This audit subsystem cancollect all the core-level information by mounting audit points in the kernel, and provide secure audit management with automate analysis fromremote terminal through website.

ZHAO Ling-tao,YANG Shu-tang,LU Song-nian,LI Jian-hua

DOI: https://doi.org/10.3321/j.issn:1002-8331.2006.32.032

2006-01-01

Computer Engineering and Applications Journal

Abstract:This article researches and realizes a network monitor and audit system of large scale and multiple,based on security audit and monitor technology.The system is not only suitable for class-scale security audit technology teaching and practicing but also suitable for scientific research.As the test and practice proved,the system possesses can support more than 150 users' concurrent accessing and the response time is not more than 1 s.

黄益民,平玲娣,潘雪增

DOI: https://doi.org/10.3785/j.issn.1008-973x.2001.06.005

2001-01-01

Abstract:After study of existing security models; analysis of information flow model, Bell-LaPadula(BLP) access control model and Biba access control model; and collation and comparison of their advantages and disadvantages, an improved model is put forward that satisfies the actual demands of information security. An implementation strategy is put forward that ensures information security, reliability, practicality and compatibility in the designed security system. An implementation scheme of this security system and its components and functions is provided. This system combines the following functions: mandatory access contro1, privilege separation, security audit, identity authentication and self-protection. It achieves the level 3 of national information security standard and level B1 of TCSEC standard. It was implemented in the Windows NT and Linux operating system and has yielded good resultsin application.

Chen Weidong,Wang Chao,Zhang Li,Xu Zheng,Xing Xishuang

DOI: https://doi.org/10.3969/j.issn.1000-386x.2013.03.080

2013-01-01

Abstract:Information security of server is encountering increasingly serious security menace.Viruses,worms,Trojans and other malicious programs impose the threat on the security of server system.The operating system has the needs to identify and control from kernel layer the subjects and objects imperilling the security.Mandatory access control has to be executed on files,registry,process,etc.in kernel layer.We study and address the implementation of operating system security kernel in terms of system resources and networks covert communication in this paper.The system has been applied to the corporate websites,various types of servers and other network security applications that have higher security requirement.The mandatory access control and each process,file,registry and network communications,etc.are all endued the appropriate security attributes systematically.Security attributes are set by the administrator strictly in accordance with the rules.Combined with the principle of least privilege and security auditing,security control is conducted at the application layer on the server or server cluster.

Wang Yilei,Gao Xianfeng,Li Tao,Sun Yujuan

DOI: https://doi.org/10.3969/j.issn.1009-3044.2008.25.014

2008-01-01

Abstract:This paper presents a design of network security audit and monitoring system, including the design of monitoring module in Proxy and network capability, etc. And it also proposes the implement flow of these function models including the implement flow of security audit model and network monitoring model. This system has greatly improved the level of safety management of network through the practice for an application case and has good actual effect.

徐辉,潘爱民

DOI: https://doi.org/10.3969/j.issn.1001-3695.2004.11.052

2004-01-01

Abstract:An enhanced security auditing mechanism for Linux is proposed.This mechanism is based on loadable kernel mo-(dule) and provides system level and application level auditing functions.System audit generates an audit record for every security sensitive system call.Application level audit abandons the traditional auditing fashion that auditing system completely depends on applications writing log file in user space.Instead,applications and system kernel will generate audit record coordinately.Examples are given for intrusion detection with this mechanism.

SHI Li-bao,ZHOU Hua-feng,Peter T. C. Tam,CHANG Nai-chao,LAN Zhou,NI Yi-xin,XU Zheng

DOI: https://doi.org/10.3969/j.issn.1004-731x.2007.23.012

2007-01-01

Abstract:Mainly focusing on the study of power system dynamics, a real time dynamic security assessment and early warning (RDSAEW) system for the purpose of keeping interconnected power systems operating in security region, monitoring dynamic security margin constantly and ensuring system operation reliability was proposed. The framework of RDSAEW system was designed in accordance with Client/Server and Browser/Server operating modes based on the TCP/IP protocol. And some advanced technologies involving Visual Studio.Net, SQL Server 2000, Shell Programming and parallel computing, etc, were widely used in the design and development of RDSAEW system. On one hand, the RDSAEW system could easily and conveniently integrate with existing Energy Management System (EMS) to implement the real time dynamic security assessment. On the other hand, the RDSAEW system could make intensive dynamic analysis related to the specified case study as an off-line simulation platform.

XUE Zhi-ping,XUE Zhi,WANG Yi-jun

DOI: https://doi.org/10.3969/j.issn.1009-8054.2008.01.031

2008-01-01

Abstract:A Unix security auditing system based on dynamic tracing is described in this paper, and the design and realization are discussed. In the system, the detectors, set by dynamic tracing DTrace in the kernel, are used to collect audit information, and the audit logs are written in a standard format. Meanwhile, the secure storage and automatic analysis for the logs are realized in C/S mode.

LU Quan-fang,TANG Jie,WEN Hong

DOI: https://doi.org/10.3969/j.issn.1009-8054.2013.10.024

2013-01-01

Abstract:Android OS(Operating System) is an operating system for mobile intelligent terminal based on Linux kernel.With the development of mobile internet,Android is widely used. At the same time the security of Android OS becomes more and more important. As the security audit strategy is an important part of the whole security strategy,it is necessary to evaluate the security audit system of Android mobile intelligent terminal OS. This paper firstly analyzes the logging systems of Android and Linux,then presents some methods in evaluating the security audit system of Android OS with the information security standard for assessment. Examples are also designed to verify the feasibility of these evaluation methods.

Chanjuan Liu,Yilei Wang,Tao Li

DOI: https://doi.org/10.1109/ssme.2009.156

2009-01-01

Abstract:This paper give the applications of safety audit and monitor technology in power management system. This paper first introduce the audit technology and its working environment and then introduce the elopements of the system which including the design of monitoring module in Proxy and network capability, etc. And it also proposes the implement flow of these function models including the implement flow of security audit model and network monitoring model, it also gives the design and realization of IP address peculate model and monitoring module in Proxy.

Libao Shi,Naichao Chang,Zhou Lan,D. P. Zhao,Huafeng Zhou,Peter T. C. Tam,Yixin Ni,Felix F. Wu

DOI: https://doi.org/10.1109/PES.2007.385468

2007-01-01

Abstract:A real time dynamic security assessment and early warning (DSAEW) system for the purpose of keeping interconnected power systems operating in security region, monitoring dynamic security margin constantly and ensuring system operation reliability is proposed in this paper. The framework of the DSAEW system is designed in accordance with Client/Server and Browser/Server models based on the TCP/IP protocol. In this paper, the overall system architecture, function design and technology used of such tool including TSA- Transient Stability Assessment, VSA- Voltage Stability Assessment is presented. Furthermore, the calculation of some operation limits involving the bus voltage limits, the branch/corridor transfer power limits and the P-load limit of the whole system is introduced in this paper as well. On one hand, the DSAEW system can easily and conveniently integrate with existing Energy Management System (EMS) to implement the real time dynamic security assessment. On the other hand, the DSAEW system can make intensive dynamic analysis related to the specified case study as an off-line simulation platform. © 2007 IEEE.

Xuewei Ding,Qingqing Shang,Chao Liu,Weiliang Li,Wenting Liu,Weihe Bu,Zhen Jia,Yuchen Jiang

DOI: https://doi.org/10.1109/ICISCAE59047.2023.10393628

2023-01-01

Abstract:A high-efficiency offline integrated hardware detection software suitable for various operating systems was developed. Windows systems that utilize pre-customized complete DLL dynamic link libraries. Use the existing green hardware detection software of Windows to start the test. Combine the reports generated by each inspection software to form a final streamlined total inspection report. Then the function of hardware fault detection and automatic Unix-like operating system server report can be realized across platforms. Through the test and experiment of the program, it is proved that the program has a good operation interface and universality. It allows full hardware inspection of Unix-like servers.

Jun Liu,Xiaoming Liu,Bo Zheng,Tang, J.

DOI: https://doi.org/10.1109/csss.2011.5974598

2011-01-01

Abstract:This paper proposes a code security inspection system based on the Subversion, which aims to avoid the submission of risk codes that contain vulnerabilities such as SQL injection, XSS (Cross Site Script) attacks and CSRF (Cross-site request forgery) to SVN repositories. In the proposed system, the submitted code will be scanned and checked and then the results will be sent to the SQA (Software Quality Assurance) units to ensure the product's safety. The system mainly adopts dependency injection and inversion of control used in the spring framework, and thus it has high scalability and maintainability. The system is also practical, independent, and highly configurable which can meet the needs of different users.

Teddy Surya Gunawan,Muhammad Kassim Lim,Nurul Fariza Zulkurnain,Mira Kartiwi

DOI: https://doi.org/10.11591/ijeecs.v11.i1.pp51-59

2018-07-01

Indonesian Journal of Electrical Engineering and Computer Science

Abstract:The massive development of technology especially in computers, mobile devices, and networking has bring security issue forward as primarily concern. The computers and mobile devices connected to Internet are exposed to numerous threats and exploits. With the utilization of penetration testing, vulnerabilities of a system can be identified and simulated attack can be launched to determine how severe the vulnerabilities are. This paper reviewed some of the security concepts, including penetration testing, security analysis, and security audit. On the other hand, Kali Linux is the most popular penetration testing and security audit platform with advanced tools to detect any vulnerabilities uncovered in the target machine. For this purpose, Kali Linux setup and installation will be described in more details. Moreover, a method to install vulnerable server was also presented. Further research including simulated attacks to vulnerable server on both web and firewall system will be conducted.

Bao Weimin

DOI: https://doi.org/10.3969/j.issn.1674-7933.2012.06.006

2012-01-01

Abstract:In recent years , Cloud computing has become an important application mode of the internet age. This paper analyzes the security issues existing in the cloud computing platform and presents software design of the security audit system based cloud computing, which can audit and monitor the whole progress of virtual behavior in cloud computing environment. The success of this system may provide some useful thoughts for the application of security audit technology in the field of cloud computing security.

Neng Cao,Yu QU,Bao ZHAO

DOI: https://doi.org/10.3969/j.issn.0258-7998.2009.02.046

2009-01-01

Abstract:Security mechanism of WLAN is weak,so it is very important to use security analysis system to manage it.Based on PowerPC processor and Linux OS,this paper implements the security analysis terminal of this system.This terminal succeeds to capture or send WLAN packets,and to implement interface modules for supporting active and passive analysis modules of this system.

YANG Jun,PAN Qi-ming,JIN Wei

2012-01-01

Abstract:Objective:Regulations and requirements of application security and quality assurance will merged into software module design,and then guide and develop the medical equipment detect and risk assessment.Methods:We compiled software by C/S architecture,SQL Server 2000 database,Delphi 7 and windows operating system.Results:It could provide guarantee by the software which is integrated by maintenance,measurement and quality control.Conclusion:The development and application of medical equipment information management system promote the management,construction and improve the security.

Jingyu Zhou,Giovanni Vigna

DOI: https://doi.org/10.1109/csac.2004.17

2004-01-01

Abstract:Host security is achieved by securing both the operating system kernel and the privileged applications that run on top of it. Application-level bugs are more frequent than kernel-level bugs, and, therefore, applications are often the means to compromise the security of a system. Detecting these attacks can be difficult, especially in the case of attacks that exploit application-logic errors. These attacks seldom exhibit characterizing patterns as in the case of buffer overflows and format string attacks. In addition, the data used by intrusion detection systems is either too low-level, as in the case of system calls, or incomplete, as in the case of syslog entries. This paper presents a technique to enforce nonbypassable, application-level auditing that does not require the recompilation of legacy systems. The technique is implemented as a kernel-level component, a privileged daemon, and an offline language tool. The technique uses binary rewriting to instrument applications so that meaningful and complete audit information can be extracted. This information is then matched against application-specific signatures to detect attacks that exploit application-logic errors. The technique has been successfully applied to detect attacks against widely-deployed applications, including the Apache Web server and the OpenSSH server.

HAO Dong-bai,YAN Feng,HUANG Hao

DOI: https://doi.org/10.3969/j.issn.1000-3428.2008.06.100

2008-01-01

Abstract:Against the leakiness means of confidential computer, a confidential computer monitor and audit system is established, by using the technology of driver filter, SPI, message broadcast interrupt, virtual printing monitor and hook on Windows platform, key algorithms and implementation methods of this system are focused. Experimental result and practice validate the availability of this system.

HONG Gong-yi,ZHAO Yan,TANG Dong-jun

DOI: https://doi.org/10.3969/j.issn.1005-7641.2012.10.006

2012-01-01

Abstract:To improve the security of video surveillance system and ensure the stability of system,through it analyzes the characteristics of environment and application function,thia paper designs the security architecture of system software.Combined with the model and data processing,this paper designs the scheme of application security and data security from identity management,identity authentication,access control,safety audit and confidentiality,availability,uniformity,validity of data.Results show that the scheme has obvious effect and effectively improve the safety of video system itself without reducing the software performance.