Home
There is a lack of methods to ensure SELinux configuration compliance.
New SELinux Integrity Instrumentation (SII) can prove compliance to security policies through detection of change.
Research using a quantitative framework that detects changes of SELinux's configuration will mitigate configuration uncertainties. In addition the mapping of services, objects and policies will allow for monitoring, auditing and reporting of the SELinux configuration.
- RQ1. Does collecting the relationship of service to policy to object by domain detect changes to services and indicate related policies and object context?
- RQ2. Does collecting the relationship of service to policy to object by domain detect changes to policies and indicate related services and object context?
- RQ3. Does collecting the relationship of service to policy to object by domain detect changes to object context and indicate related services and policies?
- RQ4. Does collecting the relationship of service to policy to object by domain detect services not covered under any security policies?
Research was preformed in Design Science Research in Information Systems