blob: 15a58157e5bce2c460c84aeb6ba577b3da649e53 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
|
\documentclass{article}
\title{%
PrivExec\\
\large Safe privilege elevation through responsibility separation
}
\author{Jakob Kaivo}
\begin{document}
\maketitle
\begin{abstract}
The discovery of exploitable bugs in critical security components such as
\texttt{sudo} happens with alarming frequency. Complexity of the SUID binary
plays a significant part in allowing these bugs to exist in the first place.
This paper presents a much simpler replacement for \texttt{sudo} which
separates the different stages of privilege elevation into separate processes,
only the last of which is fully elevated.
\end{abstract}
\section{Complexity}
\section{Use Case Reduction}
\section{Responsibility Separation}
\end{document}
|
