Special Offers
- IGI Global’s New Emerging Topic e-Book Collections
  Acquire highly focused and affordable Cutting-Edge Peer-Reviewed Research Content through a selection of 17 topic-focused e-Book Collections discounted up to 90%, compared to list prices. Collection topics include Artificial Intelligence, Data Science, Language Learning, Marketing and Customer Relations, Sustainability, and many more. Hosted on the InfoSci^® platform, these collections feature no DRM, no additional cost for multi-user licensing, no embargo of content, full-text PDF & HTML format, and more.
  Learn More
- Open Access Book (Free Access) - Encyclopedia of Information Science and Technology, Sixth Edition (ISBN: 9781668473665)
  The Encyclopedia of Information Science and Technology, Sixth Edition) continues the legacy set forth by the first five editions by providing comprehensive coverage and up-to-date definitions of the most important issues, concepts, and trends pertaining to technological advancements and information management within a variety of settings and industries. The entire book is being published under open access.
  Read Now
- Open Access Book (Free Access) - Food Sustainability, Environmental Awareness, and Adaptation and Mitigation Strategies for Developing Countries (ISBN: 9781668456293)
  Food Sustainability, Environmental Awareness, and Adaptation and Mitigation Strategies for Developing Countries provides information on the recent technology, mitigation, and environmental protection that must be applied for food sustainability in developing countries. This book is being published under Platinum Open Access through funding from Diponegoro University, Indonesia.
  Read Now
- Open Access Book (Free Access) - New Models of Higher Education: Unbundled, Rebundled, Customized, and DIY (ISBN: 9781668438091)
  The Walmart Corporation and the Lumina Foundation have provided funding to make New Models of Higher Education: Unbundled, Rebundled, Customized, and DIY fully open access, completely removing any paywall between scholars in education and the latest research on new models for the future of higher education.
  Read Now
- Open Access Book (Free Access) - Handbook of Research on the Global View of Open Access and Scholarly Communications (ISBN: 9781799898054)
  Through a collaboration between IGI Global and the University of North Texas, the Handbook of Research on the Global View of Open Access and Scholarly Communications has been published as fully open access, completely removing any paywall between researchers of any field, and the latest research on the equitable and inclusive nature of Open Access and all of its complications.
  Read Now
Books
- - Books by Subject
  - Business, Administration, & Management
  - Scientific, Technical, & Medical (STM)
  - Education
  - Books by Field
Journals
- - Journals
  - OnDemand Journal Articles
  - Journals by Subject
  - Business, Administration, & Management
  - Scientific, Technical, & Medical (STM)
  - Education
  - Journals by Field
e-Collections
Open Access
- View All Open Access Opportunities
  Search across all of IGI Global’s available open access publishing opportunities to unleash your research potential.
  Find an Open Access Journal for Your Next Manuscript
  Search across all of IGI Global’s available open access publishing opportunities to unleash your research potential.
  Submit an Open Access Book Proposal
  Learn more about open access book publishing and how it can propel your research forward in the field.
  Convert Your Work to Open Access
  Already published? You can convert your work to open access to increase its impact through IGI Global’s Restrospective Open Access Program.
  Utilize Open Access Collection Database
  Open up your research potential by utilizing our open access content or integrating the open access collection into your library
  Consider Open Access Agreements
  For Libraries: consider no-cost or investment-level open access agreements with IGI Global to support your faculty's research endeavors.
  Search Funding Resources
  Looking for additional funding resources to support your open accesss endeavors? View industry resources compiled by our open access team.
  Review Open Access Policies & Ethical Guidelines
  Considering IGI Global to publish your work under open access? Review IGI Global’s open access policies and ethical guidelines
Publish with Us
Resources
- - Instructors
  - Course Adoption
  - Teaching Cases
  - K-12 Online Learning Collection
  - Authors and Editors
  - eEditorial Discovery^® System
  - Peer Review Process
  - Ethics and Malpractice
  - COPE Membership
  - Fair Use Policy
  - Open Access Publishing
  - FAQ
Catalogs
About Us
Newsroom

Union Filesystem Source Directory Protect Architecture

Sung Hwa Han, Min Hye Jwa, Sang Bin Jeong, Gwangyong Gim

Source Title: International Journal of Software Innovation (IJSI) 10(2)

DOI: 10.4018/IJSI.289596

OnDemand:

(Individual Articles)

Available

$37.50

Current Special Offers

No Current Special Offers

Abstract

Union filesystem has the advantage of providing a single integrated view of files on the same path by eliminating duplication of files on the same path at the mount point. A directory mounted by union filesystem should not be able to have access to that source directory in accordance with the security principle. However, the current operating system does not provide a separate security feature for the directory mounted by the union filesystem. In such an environment, there is a security threat in which unauthorized personnel access the source directory for mounting with union filesystem to create arbitrary files or change critical files. This study proposes an approach control architecture that can protect the directory to mount with union filesystem. The proposed architecture can work at the Kernel Level to block users from bypassing access. In order to verify the effectiveness of the proposed mechanism, the Positive and Negative function tests were conducted in this study. As a result, the proposed union filesystem source directivity architecture has been verified to be effective.

Article Preview

Top

Introduction

Union filesystem is a technology that extends the union mount supported by the Linux/Unix operating system to the filesystem. This technology utilizes other filesystems as one filesystem by continuously mounting them in the same location. Previously used only in the Linux/Unix operating system, but now the research is expanding in the Windows operating system.

To use union filesystem, you must select source directory and mount it. When calculating with union filesystem, check the configuration item of the source directory for mount and remove the duplicate item and mount it with one filesystem. Finally, the user can access the mounted filesystem and do file I/O.

However, union filesystem is a highly vulnerable structure for security. According to the principle of information protection for Isolation, only one use interface of all objects should be provided. Therefore, when using union filesystem, access should be made only through mount path. However, the union filesystem can be accessed through source directory as well as mount path. In particular, if a user directly accesses the source directory and changes the file structure, the change is reflected in the mounted filesystem.

If these security environments are exploited, when applications are being provided using union filesystem, critical files can be arbitrarily modulated to reduce the availability of the application, and access source directory to distribute malicious code.

In response to these security threats, the operating system used secureOS to block unauthorized access to critical files/directories. However, current secureOS is not considering union filesystem. For this reason, union filesystem has limitations that are not protected from unauthorized access.

This study proposes an approach control mechanism that can block unauthorized access to the unauthorized filesystem for these risks. If unauthorized access to union filesystem can be blocked, it will increase the integrity and availability of applications using Union filesystem. Since the proposed approach control mechanism needs to be verified for this purpose, positive and negative function tests are carried out.

This study consists of two chapters. Chapter 1 describes the background and purpose of the study. Chapter 2 introduces union filesystem and describes the security requirements that must be met to take advantage of it. Chapter 3 describes the current secureOS being provided and analyzes the security environment for union filesystem versus current file access control technology. Chapter 4 proposes an approach control mechanism for the targeted union filesystem in this study. Chapter 5 performs the validation of the effectiveness of the proposed approach control mechanism. Lastly, Chapter 6 summarizes and organizes the entire research.

Complete Article List

Search this Journal:

Reset

Volume 12: 1 Issue (2024)

Volume 11: 1 Issue (2023)

Volume 10: 4 Issues (2022): 2 Released, 2 Forthcoming

Volume 9: 4 Issues (2021)

Volume 8: 4 Issues (2020)

Volume 7: 4 Issues (2019)

Volume 6: 4 Issues (2018)

Volume 5: 4 Issues (2017)

Volume 4: 4 Issues (2016)

Volume 3: 4 Issues (2015)

Volume 2: 4 Issues (2014)

Volume 1: 4 Issues (2013)

View Complete Journal Contents Listing

MLA

APA

Chicago

Export Reference

Union Filesystem Source Directory Protect Architecture

Abstract

Introduction

Complete Article List