A low-cost runtime-privilege changing system for shared servers

We propose a low-cost runtime-privilege changing system that solves security problems in shared servers. The main problem with a shared server operating under conventional access control, i.e., an owner/group/other in combination with a Web server that runs under the privilege of the same user is th...

Full description

Saved in:
Bibliographic Details
Main Authors: Hara, D., Nakayama, Y.
Format: Conference Proceeding
Language:English
Subjects:
Access control
Containers
File servers
Kernel
Linux
Runtime Privilege
Scalability
Security in a Server
Shared Hosting Service
Site-number Scalability
Throughput
Virtual machining
Voice mail
Web server
Web Server System
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:We propose a low-cost runtime-privilege changing system that solves security problems in shared servers. The main problem with a shared server operating under conventional access control, i.e., an owner/group/other in combination with a Web server that runs under the privilege of the same user is that malicious users potentially can steal, delete, or tamper with other user's files. Existing approaches solve a portion of this problem, but they either lack performance, site-number scalability, or generality. POSIX ACL and a secure OS do not ensure security by themselves. Containers and virtual machines (VMs) have low scalability and low generality because they have the overhead of virtualization and because they typically require modifying the kernel. We implemented our system for an Apache on a Linux OS and evaluated its effectiveness. Our experimental results show that the throughput with it was, on average, 0.5% lower than that with Apache and was a maximum of 4.7% lower. Our system should be used for practical Web servers because its overhead is very low.
ISSN:1738-9445