{"links":{},"id":44354,"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00044354","sets":["1164:3925:3926:3930"]},"path":["3930"],"owner":"11","recid":"44354","title":["Trusted Domain Enforcement の軽量実装による組み込み Linux 2.6 系列のセキュリティ強化"],"pubdate":{"attribute_name":"公開日","attribute_value":"2008-03-06"},"_buckets":{"deposit":"bc1b2b79-8c74-40c8-ac5b-81c637ed137e"},"_deposit":{"id":"44354","pid":{"type":"depid","value":"44354","revision_id":0},"owners":[11],"status":"published","created_by":11},"item_title":"Trusted Domain Enforcement の軽量実装による組み込み Linux 2.6 系列のセキュリティ強化","author_link":["457567","457564","457566","457565","457569","457568"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"Trusted Domain Enforcement の軽量実装による組み込み Linux 2.6 系列のセキュリティ強化"},{"subitem_title":"A security enhancement of embedded Linux 2.6 series using lightweight trusted domain enforcement implementation","subitem_title_language":"en"}]},"item_type_id":"4","publish_date":"2008-03-06","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"独立行政法人情報通信研究機構情報通信セキュリティ研究センター"},{"subitem_text_value":"独立行政法人情報通信研究機構情報通信セキュリティ研究センター"},{"subitem_text_value":"独立行政法人情報通信研究機構情報通信セキュリティ研究センター"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"National Institute of Information and Communication Technology, Tracable Network Group","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Information and Communication Technology, Tracable Network Group","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Information and Communication Technology, Tracable Network Group","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/44354/files/IPSJ-CSEC08040020.pdf","label":"IPSJ-CSEC08040020"},"date":[{"dateType":"Available","dateValue":"2010-03-06"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-CSEC08040020.pdf","filesize":[{"value":"385.7 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"30"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"1ea0d8c3-91a0-4dff-9786-c32df7306576","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2008 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"安藤, 類央"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"門林, 雄基"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"篠田, 陽一"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Ruo, Ando","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Youki, Kadobayashi","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Youichi, Shinoda","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA11235941","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"組み込み機器はオープンソースのソフトウェアを搭載することが多くなっており、脆弱性を利用した悪意のある入力を前提としたシステムの設計が重要になっている。組み込み機器は、特定の用途に特化されており、悪意のある入力に対しては、軽量な検証とサンドボックス化の実装が有効であると考えられる。本論文では、TCSEC(Trusted Computer System Evaluation Criteria )での TDE(Trusted Domain Enforcement)を用いて、組み込み Linux 2.6 系列に軽量に実装する方法を提案する。提案手法は、軽量実装のため、１つのアプリケーションのサンドボックス化を目的としたカーネルパッチを適用した。TDE の実装にあたっては、LIDS(Linux Intrusion Detection System) の linux 2.4 のバージョンを参考にし、組み込み WEB サーバに利用されることの多い、Tiny Httpd への適用を行った。","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"Deployment of open source software for embedded system is increasing. Sytem designer need to cope with malicious input using exposed vulnerability. Lightweight verification and sandbox approach is effective for embedded system. Because embedded system is specified, has less generic purpose than PC and servers. In this paper we apply TDE (Trusted Domain Enforcement) for embedded linux 2.6 series. TDE is a concept showed in TCSEC (Trusted Computer System Evaluation Criteria) for input validation and sandbox for protecting system. Our system is based on LIDS (Linux Intrustion System) for Linux 2.4 series. We implement our system as small kernel patch. We also discuss the modification of thttpd in deployment of our TDE system.","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"119","bibliographic_titles":[{"bibliographic_title":"情報処理学会研究報告コンピュータセキュリティ（CSEC）"}],"bibliographicPageStart":"115","bibliographicIssueDates":{"bibliographicIssueDate":"2008-03-06","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"21(2008-CSEC-040)","bibliographicVolumeNumber":"2008"}]},"relation_version_is_last":true,"weko_creator_id":"11"},"created":"2025-01-18T23:10:33.111964+00:00","updated":"2025-01-19T23:39:42.071100+00:00"}