Application Research of SMACK in Embedded System

doi:10.3969/j.issn.1000-3428.2011.05.054

Computer Engineering ›› 2011, Vol. 37 ›› Issue (5): 161-163,166.

• Networks and Communications • Previous Articles Next Articles

Application Research of SMACK in Embedded System

RUAN Yue ^1,2, ZHENG Xiao^1,2

(1. School of Computer Science, Anhui University of Technology, Maanshan 243000, China; 2. School of Computer Science and Engineering, Southeast University, Nanjing 210096, China)

Online:2011-03-05 Published:2012-10-31

嵌入式系统中的SMACK应用研究

阮越^1,2，郑啸^1,2

(1. 安徽工业大学计算机学院，安徽马鞍山 243000；2. 东南大学计算机科学与工程学院，南京 210096)

作者简介:阮越(1972－)，男，讲师、博士研究生，主研方向：系统安全，嵌入式系统；郑啸，副教授、博士
基金资助:
国家自然科学基金资助项目(61003311)；安徽省高等学校优秀青年教师科研基金资助项目(2007jq1028)

Abstract

Abstract: This paper starts from an introduction of Mandatory Access Control(MAC) and presents some technologies which implement it in Linux mainline kernel, including SELinux and SMACK, and gives an example in detail of how to define SMACK rule set to address the requirements of constructing sandbox for third-party applications in Linux based mobile phone. Result of test indicates that running smack has fewer memory consumption and more efficient CPU performance comparing with SELinux, and SMACK is more suitable for embedded system. .

Key words: Mandatory Access Control(MAC), Simplified Mandatory Access Control Kernel(SMACK), embedded system, security, sandbox

摘要： 介绍强制访问控制(MAC)方法和在Linux主流内核版本中MAC主要的实现技术，包括SELinux和SMACK。将SMACK应用到典型的嵌入式设备?——智能手机上，通过定义SMACK规则为第三方软件构造沙盒。测试结果表明，与SELinux相比，SMACK具有较少的内存消耗和较高的运行效率，更适用于嵌入式系统。

关键词: 强制访问控制, 简单强制访问控制内核, 嵌入式系统, 安全, 沙盒

CLC Number:

TP309.2

RUAN Huo, ZHENG Chi. Application Research of SMACK in Embedded System[J]. Computer Engineering, 2011, 37(5): 161-163,166.

阮越, 郑啸. 嵌入式系统中的SMACK应用研究[J]. 计算机工程, 2011, 37(5): 161-163,166.

/ Recommend / Download Citations

URL:

https://www.ecice06.com/EN/Y2011/V37/I5/161

[1]	QI Fenglin, SHEN Jiajie, WANG Maoyi, ZHANG Kai, WANG Xin. Review of Application of Artificial Intelligence in University Informatization [J]. Computer Engineering, 2025, 51(4): 1-14.
[2]	LIU Zhuang, GU Kangzheng, TAN Xin, ZHANG Yuan. Automatic Generation of Code for Heap Spraying Object Manipulation Targeting Kernel Vulnerability Exploitation [J]. Computer Engineering, 2025, 51(4): 178-187.
[3]	MAO Jingzheng, HU Xiaorui, XU Gengchen, WU Guodong, SUN Yanbin, TIAN Zhihong. Review of Application Progress of Digital Twins in Industrial Control Security [J]. Computer Engineering, 2025, 51(2): 1-17.
[4]	HAN Juan, ZHOU Siqi, PING Ping. Reversible Data Hiding in Encrypted Image Based on Quadtree Encryption and Adaptive Block Encoding [J]. Computer Engineering, 2025, 51(2): 202-212.
[5]	WANG Yuanyuan, WANG Shiqian, WANG Han, GUO Zhengbin, HU Xiancheng. Cross-Border Intelligent Analysis of Energy Emission Based on Vertical Federated Learning [J]. Computer Engineering, 2025, 51(1): 164-173.
[6]	Qiong SHI, Hui DUAN, Zhibin SHI. Trusted Task Offloading Scheme Based on Deep Reinforcement Learning [J]. Computer Engineering, 2024, 50(8): 142-152.
[7]	XIONG Shiqiang, HE Daojing, WANG Zhendong, DU Runmeng. Review of Federated Learning and Its Security and Privacy Protection [J]. Computer Engineering, 2024, 50(5): 1-15.
[8]	Lin NI, Zihui LIU, Shuai ZHANG, Jiujiang HAN, Ming XIAN. IP Soft Core Hardware Trojan Detection Method Based on Grayscale Graph Analysis [J]. Computer Engineering, 2024, 50(3): 44-51.
[9]	LIU Hangbo, MA Li, LI Yang, MA Dongchao, FU Yingxun. Obstacle Avoidance Method Using DQN to Classify Obstacles in Unmanned Driving [J]. Computer Engineering, 2024, 50(11): 380-389.
[10]	YU Xinsheng, ZHU Danjiang, LUO Lunhan. System Security Analysis Method Based on CLPN [J]. Computer Engineering, 2024, 50(10): 255-265.
[11]	Sha ZHOU, Guowei SHEN, Chun GUO. Vulnerability Information Completion Based on Security Knowledge Graph and Reverse Features [J]. Computer Engineering, 2024, 50(1): 145-155.
[12]	Zhaoxian XIE, Xingmin ZOU, Wenjing ZHANG. High-Efficient Parameter-Pruning Algorithm of Decision Tree for Large Dataset [J]. Computer Engineering, 2024, 50(1): 156-165.
[13]	Changhong YU, Ya LU, Haixin WANG, Ming GAO. Traffic Classification Algorithm for IoT Device Based on Sliding Time Window [J]. Computer Engineering, 2023, 49(7): 259-268.
[14]	FU Jiahao, YANG Jiayi, LI Aiguo. High-Utility Semantic Trajectory Pattern Mining for Security System [J]. Computer Engineering, 2023, 49(6): 62-70.
[15]	LI Jingwen, ZHAO Kui. Password Guessing Method Based on Improved PCFG Algorithm [J]. Computer Engineering, 2023, 49(5): 38-47.

Please choose a citation manager

Content to export

Application Research of SMACK in Embedded System

嵌入式系统中的SMACK应用研究

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments

模态框（Modal）标题

Please choose a citation manager

Content to export

Application Research of SMACK in Embedded System

嵌入式系统中的SMACK应用研究

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments