关键词: LSM 钩子函数 访问控制 可装载动态内核模块

Abstract:

LSM（Linux Security Modules）is a universal lightweight access control framework supporting multiple security strategies for Linux kernel development,  and this framework can make every access control module server act as a dynamic kernel module. In this paper, the related background and the design conc eption of LSM are briefly introduced, a detailed case of LSM is discussed,and our design scheme is presented.

Key words: LSM, hook function;access control;loadable kernel modul