• Proceedings of the Korea Information Processing Society Conference
• /
• 2003.05a
• /
• pp.431-434
• /
• 2003

본 논문에서는 Linux 운영체제에서의 kernel hardening을 설계한다. 커널 내에서 panic 이 발생할 경우 복구가 가능한 경우에는 정상적인 동작이 될 수 있도록 한다. 이렇게 함으로써 Linux Kernel Hardening 기능은 안정적인 커널의 동작을 보장한다. 본 논문에서 Linux Kernel Hardening을 보장하기 위하여 커널 내 ASSERT(), BUG() 함수를 중심으로 설계를 한다.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.11 no.1
• /
• pp.173-180
• /
• 2007

This paper designs the kernel hardening function by recovering the kernel stack fame to reduce the system error or panic due to the kernel code error. The suggested kernel hardening function guarantees normal system operation by recovering the incorrect address of the kernel stack kernel. The suggesting kernel hardening mechanism is applied to the network module of Linux which is much using put. I experimented the kernel hardening function at the network module of the Linux by forcing panic code.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2003.11a
• /
• pp.357-360
• /
• 2003

본 논문에서는 Linux 운영체제에서의 kernel hardening을 설계 및 구현한다. 커널 내에서 panic 이 발생할 경우 복구가 가늠한 경우에는 정상적인 동작이 될 수 있도록 한다. 이렇게 함으로써 Linux Kernel Hardening 기능은 안정적인 커널의 동작을 보장한다. 본 논문에서 Lmux Kernel Hardening을 보장하기 위하여 커널 내 ASSERT() 함수를 중심으로 설계 및 구현을 한다.

• The KIPS Transactions:PartA
• /
• v.13A no.3 s.100
• /
• pp.199-204
• /
• 2006

The kernel hardening function is necessary in terms of kernel stability to reduce the system error or panic due to the kernel code error that is made by program developer. But, the traditional kernel hardening method is difficult to implement and consuming high cost. The suggested kernel hardening function that makes high availability system by changing the panic() function of inside kernel code guarantees normal system operation by recovering the incorrect address of the kernel stack frame. We experimented the kernel hardening function at the network module of the Linux by forcing panic code and confirmed the proposed design mechanism of kernel hardening is working well by this experiment.

• The KIPS Transactions:PartA
• /
• v.11A no.4
• /
• pp.227-234
• /
• 2004

A panic state is often caused by careless computer control. It could be also caused by a kernel programmer's mistake. When panic is occurred, the process of the panic state has to be checked, then if it can be restored, operating system restores it, but if not, operating system runs the panic function to stop the system in the kernel hardening O.S. To decide recovery of the process, the type of the panic for the present process should be checked. The value type and the address type have to restore the process. If the system process has a panic state, the system should be designed to shutdown hardening function in the Linux operating system.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.13 no.12
• /
• pp.2579-2585
• /
• 2009

It is an important problem without system breaking. Like this, to make a computer system operate normally, various commercial fault tolerant techniques are used. Almost commercial products of fault tolerant system consume much cost. This paper proposes kernel hardening technique that are reducing panic using DLM modue in Linux USB driver. I experimented the design technique in Linux O.S. By the experiment, the suggesting technique which includes USB module with DLMis working well.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2009.04a
• /
• pp.758-761
• /
• 2009

본 논문은 적은 비용으로 시스템 정지 현상(PANIC)을 줄일 수 있는 Kernel Hardening 기법에 대해서 연구한다. 최근 USB의 사용이 증가함에 따라 USB의 사용에 의한 시스템 정지 현상이 자주 발생하고 있다. 본 논문에서는 이러한 컴퓨터 시스템의 정지 현상을 줄이고자 USB 디바이스를 사용하여 리눅스 커널에서의 Kernel Hardening 기법에 대해 연구한다. USB와 관련된 커널 모듈을 수정하고 수정된 모듈이 정상적으로 동작하는 지 테스트를 수행하여 정상적으로 동작함을 확인하는 실험을 수행한다.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.8 no.5
• /
• pp.961-969
• /
• 2004

A panic state is often caused by careless computer control. It could be also caused by a kernel programmer's mistake. It can make a big problem in computer system when it happens a lot. When a panic occurs, the process of the panic state has to be checked, then if it can be restored, operating system restores it, but if not, operating system runs the panic function to stop the system in the kernel hardening O.S. To decide recovery of the process, the type of the panic for the present process should be checked. 1'he value type and the address type have to restore the process. If the system process is in a panic state, the system should be designed to shutdown hardening function In the Linux operating system. So it has to decide whether the process should be restored or not before going to the panic state.

• Proceedings of the Korea Contents Association Conference
• /
• 2009.05a
• /
• pp.693-698
• /
• 2009

Computer system to operate normally without interruption, is one of the important issues. Likewise, a computer system to operate without interruption, failure to endure a variety of techniques, development and commercial use is arranged. Most guards will take a lot of technique failure endure. In this paper on the Linux operating system, dynamic module (DLM) to connect using the USB device to use USB devices can cause the symptoms to reduce the kernel PANIC hadeuning technique for studying the kernel.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.9 no.6
• /
• pp.1333-1340
• /
• 2005

This paper is based on the study to reduce a system panic state. A panic state could be caused by a programmer or an administrator's careless mistake. The proposed hardening Operating System of this paper stops the process which is running in the kernel with an error. The error process for the value type and the address type of a certain variable have to be restored. Installed with kernel hardening, Operating System checks the recovery possibility of the process first and then restores the process which can be recovered. When it is possible to recover the kernel code with an error, it is to be recovered in ASSERT() function.