Privilege separation made easy: Trusting small libraries not big processes

Proceedings of the 1st European Workshop on System Security, EUROSEC'08

Volumn , Issue , 2008, Pages 40-46

  Murray, Derek G ^a   Hand, Steven ^a  

^a UNIVERSITY OF CAMBRIDGE   (United Kingdom)

Author keywords

Disaggregation; Libraries; Virtualisation

Indexed keywords

COMMODITY OPERATING SYSTEMS; DISAGGREGATION; ENTIRE SYSTEMS; IN BUILDINGS; MONOLITHIC SYSTEMS; NEW APPROACHES; SECURE SOFTWARES; SOFTWARE DEVELOPMENT; TRUSTED COMPUTING BASE; VIRTUALISATION;

COMPUTER OPERATING SYSTEMS;

LIBRARIES;

EID: 65249096543     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1355284.1355292     Document Type: Conference Paper

References (24)

1. A. Banerji, J. M. Tracey, and D. L. Cohn. Protected shared libraries: a new approach to modularity and sharing. In ATEC'97: Proceedings of the Annual Technical Conference on Proceedings of the USENIX 1997 Annual Technical Conference, pages 5-5, Berkeley, GA, USA, 1997. USENIX Association.
2. P. Barham, B. Dragovic, K. Eraser, S. Hand, T. Harris, A. Ho, R. Neugebauer, I. Pratt, and A. Warfield. Xen and the art of virtualization. In Proceedings of the nineteenth ACM symposium on operating systems principles, pages 164-177. ACM Press New York, NY, USA, 2003.
3. M. Ben-Yehuda, J. Mason, O. Krieger, J. Xenidis, L. V. Doom, A. Mallick, J. Nakajima, and E. Wahlig. Utilizing IOMMUs for Virtualization in Linux and Xen. In Proceedings of the 2006 Ottawa, Linux Symposium, 2006.
4. S. Berger, R. Cáceres, K. A. Goldman, R. Perez, R. Sailer, and L. van Doom. vTPM: virtualizing the trusted platform module. In Proceedings of the 15th USENIX Security Symposium, pages 21-21, Berkeley, CA, USA, 2006. USENIX Association.
5. D. Brumley and D. Song. Privtrans: automatically partitioning programs for privilege separation. In SSYM'04: Proceedings of the 13th USENIX Security Symposium, pages 5-5, Berkeley, CA, USA, 2004. USENIX Association.
6. J. S. Chase, H. M. Levy, M. J. Feeley, and E. D. Lazowska. Sharing and protection in a single-address-space operating system. ACM Trans. Comput. Syst., 12(4):271-307, 1994.
7. X. Chen, T. Garfmkel, E. C. Lewis, P. Subrahmanyam, C. A. Waldspurger, D. Boneh, J. Dwoskin, and D. R. Ports. Overshadow: A Virtualization-Based Approach to Retrofitting Protection in Commodity Operating Systems. In Proceedings of the Thirteenth International Conference on Architectural Support for Programming Languages and Operating Systems, March 2008.
8. S. Chong, J. Liu, A. C. Myers, X. Qi, K. Vikram, L. Zheng, and X. Zheng. Secure web application via automatic partitioning. In SOSP '07: Proceedings of twenty-first ACM SIGOPS symposium on Operating systems principles, pages 31-44, New York, NY, USA, 2007. ACM.
9. F. J. Corbató, M. Merwin-Daggett, and R. C. Daley. An experimental time-sharing system. In Proceedings of the. Spring Joint Computer Conference, pages 225-244, 1962.
10. J. B. Dennis and E. C. V. Horn. Programming semantics for multiprogrammed computations. Commun. ACM, 9(3):143-155, 1966.
11. K. Fraser, S. Hand, R. Neugebauer, I. Pratt, A. Warfield, and M. Williamson. Safe hardware access with the Xen virtual machine monitor. In Proceedings of the 1st Workshop on Operating System and Architectural Support for the on demand IT Infrastructure, 2004.
12. R. M. Graham. Protection in an information processing utility. Commun. ACM, 11(5):365-369, 1968.
13. M. Hohmuth, M. Peter, H. Härtig, and J. Shapiro. Reducing TCB size by using untrusted components: small kernels versus virtual-machine monitors. In Proceedings of the 11th ACM SIGOPS European workshop: beyond the PC. ACM Press New York, NY, USA, 2004.
14. D. Kilpatrick. Privman: A Library for Partitioning Applications. In Proceedings of Freenix 2003, Berkeley, CA, USA, 2003. USENIX Association.
15. I. M. Leslie, D. McAuley, R. Black, T. Roscoe, P. T. Barham, D. Evers, R. Fairbairns, and E. Hyden. The design and implementation of an operating system to support distributed multimedia applications. IEEE Journal of Selected Areas in Communications, 14(7):1280-1297, 1996.
16. D. G. Murray, G. Milos, and S. Hand. Improving Xen security through disaggregation. In Proceedings of the, 2008 International conference on Virtual Execution Environments, 2008.
17. N. Provos, M. Friedl, and P. Honeyman. Preventing privilege escalation. In Proceedings of the 12th USENIX Security Symposium, pages 16-16, Berkeley, CA, USA, 2003. USENIX Association.
18. H. C. Rao and L. L. Peterson. Distributed shared library. In EW 5: Proceedings of the 5th ACM SIGOPS European workshop, pages 1-5, New York, NY, USA, 1992. ACM.
19. SCO Group. System V Application Binary Interface-Intel 386 Architecture Processor Supplement, 1996.
20. J. S. Shapiro, J. M. Smith, and D. J. Farber. EROS: a fast capability system. SIGOPS Oper. Syst. Rev., 34(2):21-22, 2000.
21. L. Singaravelu, C. Pu, H. Härtig, and C. Helmuth. Reducing TCB complexity for security-sensitive applications: Three case studies. In Proceedings of EuroSys 2006, 2006.
22. M. V. Wilkes. The Cambridge CAP computer and its operating system. (Operating and programming systems series). North-Holland Publishing Co., Amsterdam, The Netherlands, The Netherlands, 1979.
23. E. Witchel, J. Rhee, and K. Asanović. Mondrix: Memory Isolation for Linux using Mondriaan Memory Protection. SIGOPS Oper. Syst. Rev., 39(5):31-44, 2005.
24. W. Wulf, E. Cohen, W. Corwin, A. Jones, R. Levin, C. Pierson, and F. Pollack. Hydra: the kernel of a multiprocessor operating system. Commun. ACM, 17(6):337-345, 1974.