System Call Monitoring Using Authenticated System Calls

Abstract

System call monitoring is a technique for detecting and controlling compromised applications by checking at runtime that each system call conforms to a policy that specifies the program's normal behavior. Here, we introduce a new approach to implementing system call monitoring based on authenticated system calls. An authenticated system call is a system… (More)
DOI: 10.1109/TDSC.2006.41

Topics

10 Figures and Tables

Cite this paper

@article{Rajagopalan2006SystemCM, title={System Call Monitoring Using Authenticated System Calls}, author={Mohan Rajagopalan and Matti A. Hiltunen and Trevor Jim and Richard D. Schlichting}, journal={IEEE Transactions on Dependable and Secure Computing}, year={2006}, volume={3}, pages={216-229} }