A security module for system analysis and protection
AKARI is a Mandatory Access Control (MAC) implementation for Linux that can be used to increase the security of a system, while also being useful purely as a system analysis tool. It is a Linux kernel module based on TOMOYO Linux, which was launched in March 2003.
AKARI focuses on the behaviour of a system. Every process is created to achieve a purpose, and like an immigration officer, AKARI allows each process to declare behaviours and resources needed to achieve their purpose. When protection is enabled, AKARI acts like an operation watchdog, restricting each process to only the behaviours and resources allowed by the administrator.
The main features of AKARI include:
- System analysis
- Increased security through Mandatory Access Control
- Tools to aid in policy generation
- Simple syntax
- Easy to use
- Very few dependencies
- Requires no modification of existing binaries
Find out more on our About Page!
News
AKARI 1.0.50 released
A new version of AKARI fixes a bug in Linux 5.2 and later kernels where move_mount() system call was not supported.
AKARI 1.0.49 released
A new version of AKARI fixed a use-after-free bug which a malicious unprivileged user could exploit.
AKARI 1.0.48 released
A new version of AKARI fixes a security bug in Linux 2.6.29 and later kernels where AKARI's execute permission is by error not checked when an execute request is retried after that execute request was rejected by checking AKARI's execute permission.
AKARI 1.0.47 released
A new version of AKARI fixed several bugs.
AKARI 1.0.42 released
A new version of AKARI loosened validity check of domainname and pathname.
AKARI 1.0.40 released
A new version of AKARI changed pathname calculation rule.