中大機構典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/93143
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 80990/80990 (100%)
Visitors : 41647031      Online Users : 2333
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: http://ir.lib.ncu.edu.tw/handle/987654321/93143


    Title: RFAP: Remote File Access Protection in Linux Kernel
    Authors: 趙庭浩;Chao, Ting-Hao
    Contributors: 資訊工程學系
    Keywords: 作業系統
    Date: 2023-07-20
    Issue Date: 2024-09-19 16:44:29 (UTC+8)
    Publisher: 國立中央大學
    Abstract: 隨著嚴重特殊傳染性肺炎疫情爆發,居家辦公已經成為常見的工作模式,遠端連線的需求也隨之上升,其安全性也越來越被重視,像是遠端連線軟體的漏洞、使用者帳密被竊取、被植入後門程式等等都是常見的安全問題。
    為了解決這些遠端連線的安全問題,本文在 Linux 作業系統實作了一套防禦機制 (RFAP),能夠有效的限制遠端連線使用者對特定檔案進行操作。RFAP 透過 socket 相關的操作來判斷使用者是否為遠端連線,若判斷為正在進行遠端連線,執行檔案操作的 system call 會進行額外的權限檢查。RFAP 能夠在不影響遠端連線者正常使用下運行,並且能夠完全保護重要的檔案,在遠端連線的情況下就算系統管理者的帳號也無法對受保護的檔案進行操作,希望這套新的機制可以讓使用者在遠端連線時更加安全。
    ;With the outbreak of COVID-19 pandemic, work from home has become more and more popular, and the demand for remote connection has increased accordingly. The security of remote connections has also become increasingly important. Common security issues including vulnerabilities in remote connection software, password brute force attack, and the implantation of backdoor programs.
    To address these security concerns in remote connections, this thesis proposes the implementation of a defense mechanism called Remote File Access Protection (RFAP) in the Linux operating system. RFAP effectively restricts remote users from performing operations on specific files. RFAP determines whether a user is engaged in a remote connection by inspecting socket operations. If a remote connection is detected, additional permission checks are performed on file operation system calls. RFAP can operate without disrupting the normal usage of remote connections and provides complete protection for critical files. We hoped that this new mechanism will enhance the security of users during remote connections.
    Appears in Collections:[Graduate Institute of Computer Science and Information Engineering] Electronic Thesis & Dissertation

    Files in This Item:

    File Description SizeFormat
    index.html0KbHTML9View/Open


    All items in NCUIR are protected by copyright, with all rights reserved.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明