magistrsko delo
Lovro Habjan (Author), Uroš Čibej (Mentor), Jurij Mihelič (Co-mentor)

Abstract

Računalniška varnost je zahtevno področje, med katerega spada zagotavljanje lastnosti podatkov, kot sta zaupnost in celovitost. Na njih vpliva pretok informacij znotraj računalniškega sistema. V okviru magistrske naloge smo predelali obstoječ navidezni stroj za arhitekturo strojnih ukazov RISC-V z zmožnostjo sledenja pretoku informacij. Na podlagi predhodnih raziskav smo za sledenje uporabili označevanje podatkov znotraj računalniškega sistema. Zasnovali smo prilagodljiv in čim bolj splošen mehanizem, ki deluje na podlagi pravil, definiranih v okviru uporabniške varnostne politike. Razširjeni navidezni stroj je s pomočjo označevanja zmožen slediti pretoku informacij ter je sposoben varovati podatke in njihove lastnosti. Njegovo delovanje smo ovrednotili z naborom testnih primerov, ki prikazujejo različne scenarije uporabe.

Keywords

označevanje;navidezni stroj;pretok informacij;varnostna politika;računalniška varnost;magisteriji;

Data

Language: Slovenian
Year of publishing:
Typology: 2.09 - Master's Thesis
Organization: UL FRI - Faculty of Computer and Information Science
Publisher: [L. Habjan]
UDC: 004(043.2)
COBISS: 133125635 Link will open in a new window
Views: 33
Downloads: 5
Average score: 0 (0 votes)
Metadata: JSON JSON-RDF JSON-LD TURTLE N-TRIPLES XML RDFA MICRODATA DC-XML DC-RDF RDF

Other data

Secondary language: English
Secondary title: Virtual machine with tag-based information flow tracking
Secondary abstract: Computer security is a complex area, which includes protection of data and its characteristics, such as confidentiality and integrity. These are affected by information flow within a computer system. We redesigned an existing virtual machine for RISC-V instruction set architecture to support information flow tracking. Based on previous research, data tagging was used for tracking. We designed a flexible and high-level mechanism that operates based on rules described in a user-defined security policy. The redesigned virtual machine is able to track information flow using tagging and is able to protect the data and its characteristics. Its performance was evaluated with a set of test cases showing different scenarios of use.
Secondary keywords: tagging;virtual machine;information flow;security policy;computer security;computer science;master's degree;Varstvo podatkov (računalništvo);Računalništvo;Univerzitetna in visokošolska dela;
Type (COBISS): Master's thesis/paper
Study programme: 1000471
Embargo end date (OpenAIRE): 1970-01-01
Thesis comment: Univ. v Ljubljani, Fak. za računalništvo in informatiko
Pages: 87 str.
ID: 17238879