September 27-30, 2021
Seattle, Washington, USA + Virtual
View More Details & Registration

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit + Embedded Linux Conference + OSPOCon 2021 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Pacific Daylight Time (UTC -7). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Back To Schedule
Tuesday, September 28 • 5:00pm - 5:50pm
(VIRTUAL) A Practical Approach to Control Unauthorized Execution of Interpreters - Junghwan Kang, The Affiliated Institute of ETRI

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Linux has various features to control arbitrary file execution, such as file mode bits, ACL, noexec mount option, IMA/EVM, fs-verity, SELinux, AppArmor, etc. However, the features are suitable to limit binary files such as an ELF file, which is the default executable file in Linux, and it is challenging to control interpreters and script files, such as Python and Perl. Because the script file is just a text file passed to interpreters as an argument, and the interpreter can program with command-line options without the script file. Besides, some of the famous interpreters are capable of binary-level programming, and particular interpreters even support functionality that binds low-level libraries. Hence, in today's Linux systems, most adversaries and malware usually use interpreters to perform exploitation actions. Thus, Junghwan Kang suggests a method for restricting the unauthorized execution of interpreters and script files to enhance Linux systems' security. First, he describes the related works preceded by Clip OS, Astra Linux, and Chromium OS. He then proposes a practical approach to control the interpreter and script file execution to ensure security and reduces side effects compared to related works.

avatar for Junghwan Kang

Junghwan Kang

Cyber Security Researcher, The Affiliated Institute of ETRI
Junghwan Kang is a senior security researcher at The Affiliated Institute of Electronics and Telecommunications Research Institute of South Korea. He has focussed on systematic methods and techniques to harden the security for a customized Linux distribution for years. Junghwan Kang... Read More →

Tuesday September 28, 2021 5:00pm - 5:50pm PDT
MeetingPlay Platform + Virtual Learning Lab
  Linux Systems, Security