The Linux-based Secure Operating System Research

With the development of the computer and network technology, information technology affects people increasingly . But computer system security becomes more and more important at the same time.The operating system security is the base of computer system security. This paper researchs and develops the Linux-based secure operating system to secure that computer systems that need high security is highly secure.Developing the Linux-based secure operating system is mainly to enhance the Linux operating system security. This paper enhances the Linux operating system security mainly by finest granularity Discretionary Access Control(DAC), Mandatory access control (MAC) and Least Privilege Management.Finest granularity DAC allows that the owner of an object can choose to grant access permission to any other user. MAC controls a subject access to a object by subject security level and object security level. Least Privilege Management separates all the privilege of the root user, which can reduce the security hazard brought about a single root. In addition, SETCAP can solve the hazard which SETUID in the Linux system brings about and the file system's limit to privilege management at the same.