An Approach to Analyzing the Windows and Linux Security Models

Xinyue Song; Michael Stinson; Roger Y. Lee; Paul B. Albee

An Approach to Analyzing the Windows and Linux Security Models

Xinyue Song, Michael Stinson, Roger Y. Lee, Paul B. Albee

Published: 01 Jan 2006, Last Modified: 31 Oct 2024ACIS-ICIS 2006EveryoneRevisionsBibTeXCC BY-SA 4.0

Abstract: When assessing the potential security risks that exist in the features of different operating systems, there is not a common set of metrics. As a result, it is very difficult to objectively assess the risks associated with a specific feature in the operating system. In this paper, we propose a simple set of metrics to quantify and measure the security risks associated with a specific feature or configuration of any operating systems. We present how the risks in a specific feature in Windows can be quantified and measured with the formula and metrics we have developed in this study. Further more, it is also applicable to other operating systems such as Linux.

Loading