LSMPMON: Performance evaluation mechanism of LSM-based secure OS

Toshihiro Yamauchi, Kenji Yamamoto

Research output: Contribution to journalArticlepeer-review

1 Citation (Scopus)


Security focused OS (Secure OS) is attracting attention as a method for minimizing damage caused by various intrusions. Secure OSs can restrict the damage due to an attack by using Mandatory Access Control (MAC). In some projects, secure OSs for Linux have been developed. In these OSs, different implementation methods have been adopted. However, there is no method for easily evaluating the performance of the secure OS in detail, and the relationship between the implementation method and the performance is not clear. The secure OS in Linux after version 2.6 has often been implemented by Linux Security Modules (LSM). Therefore, we determine the effect of introducing the secure OS on the performance of the OS by using the overhead measurement tool, the LSM Performance Monitor (LSMPMON). This paper reports the evaluation results of three secure OSs on Linux 2.6.36 by LSMPMON. The results show the effect of introducing the secure OS.

Original languageEnglish
Pages (from-to)81-90
Number of pages10
JournalInternational Journal of Security and its Applications
Issue number2
Publication statusPublished - Aug 8 2012


  • LSM
  • Linux
  • Performance evaluation
  • Secure OS

ASJC Scopus subject areas

  • Computer Science(all)


Dive into the research topics of 'LSMPMON: Performance evaluation mechanism of LSM-based secure OS'. Together they form a unique fingerprint.

Cite this