Welcome to Journal of University of Chinese Academy of Sciences,Today is

›› 2004, Vol. 21 ›› Issue (1): 95-100.DOI: 10.7523/j.issn.2095-6134.2004.1.015

Previous Articles     Next Articles

Administration of User Account in Secure OS

Zhang Xiang-feng, Sun Yu-fang   

  1. Institute of Software, Chinese Academy of Sciences, Beijing 100080, China
  • Online:2004-01-10

Abstract:

Many secure operating systems are developed based upon UNIX-like systems and many access control mechanisms and audit mechanism are introduced,but the system account file does not assure unique UID and might lead to confusion in audit trails.Users access rights in some security mechanisms are generally managed quite independently of account management and should also be deleted when one user is removed from the account file to avoid unintended reuse by another user.All those things require that the account file should be administrated in a way different from the traditional one in UNIX.Puts forw ard a mechanism to keep unique UID and to capture user account alteration in system call level.Puts the mechanism into practice in SLINUX,a variant ofLINUX,and provide the performance analysis.

Key words: secure OS, security mechanism, audit

CLC Number: