@inproceedings{c9161f783cba4cbba23de1738cc1849c,
title = "Shamon: A system for distributed mandatory access control",
abstract = "We define and demonstrate an approach to securing distributed computation based on a shared reference monitor (Shamon) that enforces mandatory access control (MAC) policies across a distributed set of machines. The Shamon enables local reference monitor guarantees to be attained for a set of reference monitors on these machines. We implement a prototype system on the Xen hypervisor with a trusted MAC virtual machine built on Linux 2.6 whose reference monitor design requires only 13 authorization checks, only 5 of which apply to normal processing (others are for policy setup). We show that, through our architecture, distributed computations can be protected and controlled coherently across all the machines involved in the computation.",
author = "McCune, {Jonathan M.} and Trent Jaeger and Stefan Berger and Ram{\'o}n C{\'a}ceres and Reiner Sailer",
year = "2006",
month = dec,
day = "1",
doi = "10.1109/ACSAC.2006.47",
language = "English (US)",
isbn = "0769527167",
series = "Proceedings - Annual Computer Security Applications Conference, ACSAC",
pages = "23--32",
booktitle = "Proceedings - Annual Computer Security Applications Conference, ACSAC",
note = "22nd Annual Computer Security Applications Conference, ACSAC 2006 ; Conference date: 11-12-2006 Through 15-12-2006",
}