{"id":"https://openalex.org/W7119151950","doi":"https://doi.org/10.48550/arxiv.2601.00909","title":"Security Hardening Using FABRIC: Implementing a Unified Compliance Aggregator for Linux Servers","display_name":"Security Hardening Using FABRIC: Implementing a Unified Compliance Aggregator for Linux Servers","publication_year":2026,"publication_date":"2026-01-01","ids":{"openalex":"https://openalex.org/W7119151950","doi":"https://doi.org/10.48550/arxiv.2601.00909"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2601.00909","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2601.00909","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2601.00909","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5108126607","display_name":"Sheldon Paul","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Paul, Sheldon","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5075965221","display_name":"Izzat Alsmadi","orcid":"https://orcid.org/0000-0001-7832-5081"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Alsmadi, Izzat","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5108126607"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.7261000275611877,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.7261000275611877,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.1005999967455864,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10639","display_name":"Advanced Software Engineering Methodologies","score":0.033900000154972076,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/testbed","display_name":"Testbed","score":0.8353000283241272},{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.5878999829292297},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.5066999793052673},{"id":"https://openalex.org/keywords/news-aggregator","display_name":"News aggregator","score":0.5020999908447266},{"id":"https://openalex.org/keywords/hardening","display_name":"Hardening (computing)","score":0.49709999561309814},{"id":"https://openalex.org/keywords/conformance-testing","display_name":"Conformance testing","score":0.39660000801086426},{"id":"https://openalex.org/keywords/bridging","display_name":"Bridging (networking)","score":0.39590001106262207},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.35280001163482666}],"concepts":[{"id":"https://openalex.org/C31395832","wikidata":"https://www.wikidata.org/wiki/Q1318674","display_name":"Testbed","level":2,"score":0.8353000283241272},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6342999935150146},{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.5878999829292297},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.5066999793052673},{"id":"https://openalex.org/C180505990","wikidata":"https://www.wikidata.org/wiki/Q498267","display_name":"News aggregator","level":2,"score":0.5020999908447266},{"id":"https://openalex.org/C44255700","wikidata":"https://www.wikidata.org/wiki/Q978423","display_name":"Hardening (computing)","level":3,"score":0.49709999561309814},{"id":"https://openalex.org/C76844732","wikidata":"https://www.wikidata.org/wiki/Q4072285","display_name":"Conformance testing","level":3,"score":0.39660000801086426},{"id":"https://openalex.org/C174348530","wikidata":"https://www.wikidata.org/wiki/Q188635","display_name":"Bridging (networking)","level":2,"score":0.39590001106262207},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.35280001163482666},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3305000066757202},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.319599986076355},{"id":"https://openalex.org/C2781460075","wikidata":"https://www.wikidata.org/wiki/Q1399332","display_name":"Compliance (psychology)","level":2,"score":0.2994000017642975},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.2833999991416931},{"id":"https://openalex.org/C39358052","wikidata":"https://www.wikidata.org/wiki/Q2578632","display_name":"Information security audit","level":5,"score":0.2833999991416931},{"id":"https://openalex.org/C79158427","wikidata":"https://www.wikidata.org/wiki/Q485396","display_name":"Analytics","level":2,"score":0.27900001406669617},{"id":"https://openalex.org/C80958533","wikidata":"https://www.wikidata.org/wiki/Q1047174","display_name":"Audit trail","level":3,"score":0.2639000117778778},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.2619999945163727},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.26190000772476196},{"id":"https://openalex.org/C84111939","wikidata":"https://www.wikidata.org/wiki/Q5125465","display_name":"Clamping","level":2,"score":0.250900000333786}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2601.00909","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2601.00909","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2601.00909","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2601.00909","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[{"score":0.49578121304512024,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"This":[0],"paper":[1],"presents":[2],"a":[3,53,60,72,80,85,121],"unified":[4],"framework":[5],"for":[6,89],"evaluating":[7],"Linux":[8],"security":[9,19,91,128],"hardening":[10,34,98,138],"on":[11],"the":[12,50],"FABRIC":[13],"testbed":[14,142],"through":[15],"aggregation":[16],"of":[17,52,127,137],"heterogeneous":[18],"auditing":[20],"tools.":[21],"We":[22],"deploy":[23],"three":[24],"Ubuntu":[25],"22.04":[26],"nodes":[27],"configured":[28],"at":[29],"baseline,":[30],"partial,":[31],"and":[32,36,42,76,123],"full":[33,97],"levels,":[35],"evaluate":[37],"them":[38,78],"using":[39],"Lynis,":[40],"OpenSCAP,":[41],"AIDE":[43],"across":[44,56],"108":[45],"audit":[46],"runs.":[47],"To":[48],"address":[49],"lack":[51],"consistent":[54],"interpretation":[55],"tools,":[57],"we":[58],"implement":[59],"Unified":[61],"Compliance":[62],"Aggregator":[63],"(UCA)":[64],"that":[65,96,118],"parses":[66],"tool":[67],"outputs,":[68],"normalizes":[69],"scores":[70],"to":[71,104,113],"common":[73],"0--100":[74],"scale,":[75],"combines":[77],"into":[79],"weighted":[81],"metric":[82],"augmented":[83],"by":[84],"customizable":[86],"rule":[87,108],"engine":[88],"organization-specific":[90],"policies.":[92],"Experimental":[93],"results":[94,116],"show":[95],"increases":[99],"OpenSCAP":[100],"compliance":[101,109],"from":[102,111],"39.7":[103],"71.8,":[105],"while":[106],"custom":[107],"improves":[110],"39.3\\%":[112],"83.6\\%.":[114],"The":[115],"demonstrate":[117],"UCA":[119],"provides":[120],"clearer":[122],"more":[124],"reproducible":[125],"assessment":[126],"posture":[129],"than":[130],"individual":[131],"tools":[132],"alone,":[133],"enabling":[134],"systematic":[135],"evaluation":[136],"effectiveness":[139],"in":[140],"programmable":[141],"environments.":[143]},"counts_by_year":[],"updated_date":"2026-01-08T20:10:11.968330","created_date":"2026-01-08T00:00:00"}