تقرير
Sandboxing Adoption in Open Source Ecosystems
العنوان: | Sandboxing Adoption in Open Source Ecosystems |
---|---|
المؤلفون: | Alhindi, Maysara, Hallett, Joseph |
سنة النشر: | 2024 |
المجموعة: | Computer Science |
مصطلحات موضوعية: | Computer Science - Software Engineering, Computer Science - Cryptography and Security |
الوصف: | Sandboxing mechanisms allow developers to limit how much access applications have to resources, following the least-privilege principle. However, it's not clear how much and in what ways developers are using these mechanisms. This study looks at the use of Seccomp, Landlock, Capsicum, Pledge, and Unveil in all packages of four open-source operating systems. We found that less than 1% of packages directly use these mechanisms, but many more indirectly use them. Examining how developers apply these mechanisms reveals interesting usage patterns, such as cases where developers simplify their sandbox implementation. It also highlights challenges that may be hindering the widespread adoption of sandboxing mechanisms. Comment: Published at the 12th ACM/IEEE International Workshop on Software Engineering for Systems-of-Systems and Software Ecosystems (SESoS 2024), Co-located with ICSE |
نوع الوثيقة: | Working Paper |
URL الوصول: | http://arxiv.org/abs/2405.06447 |
رقم الأكسشن: | edsarx.2405.06447 |
قاعدة البيانات: | arXiv |
كن أول من يترك تعليقا!