Check out the new USENIX Web site.

Home About USENIX Events Membership Publications Students
2001 FREENIX Track Technical Program - Abstract

LOMAC: MAC You Can Live With

Timothy Fraser, NAI Labs


LOMAC is a security enhancement for Linux kernels. LOMAC demonstrates that it is possible to apply Mandatory Access Control techniques to standard Linux kernels already deployed in the field, and to do so in a manner that is simple, compatible, and largely invisible to the traditional Linux user. The LOMAC Loadable Kernel Module protects the integrity of critical system processes and files from viruses, worms, Trojan horses, and malicious remote users. It is compatible with standard Linux 2.2 kernels and applications, and seeks to provide useful protection without site-specific configuration. LOMAC is designed to be a form of MAC that typical users can live with.
  • View the full text of this paper in HTML form, and PDF form.

  • If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.

  • To become a USENIX Member, please see our Membership Information.
?Need help? Use our Contacts page.

Last changed: 13 Feb 2002 ml
Technical Program
Conference index