Security of Professor Grading Systems and Use of chroot for Sandboxing
This project is for CPE-456 - Introduction to Computer Security and CSC-556 - Graduate Computer Security.
Description: On the whole, Professors are very trusting of code submissions given by their students using electronic delivery methods such as Cal Poly's handin. Specifically, many instructors use automated grading scripts to programmatically compile, run, and test student code. Often, these scripts are run before the instructor looks at the actual code, waiting to have the results of the test scripts first. This poses a significant, but unlikely security threat of a rootkit style attack. We intend to investigate how pervasive this threat is in the Computer Science Department and do research into how the standard linux chroot utility can be used to create a secure environment for grading scripts and other programmatic utilities.
Advisor: Dr. Phillip Nico
Partner: Prentice Wongvibulsin
- CPE-456 Project Proposal
- CPE-456 Final Paper - [PDF] [HTML]
- CSC-556 Project Proposal
- CSC-556 Final Paper - [PDF] [HTML]
- SOUPS Poster Abstract Submission - [PDF] [HTML]
- CSC Department Poster Session Poster