Hardware containers for software components: A trusted platform for COTS-based systems

Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009

Volumn 2, Issue , 2009, Pages 830-836

  Leontie, Eugen ^a   Bloom, Gedare ^a   Narahari, Bhagirath ^a   Simha, Rahul ^a   Zambreno, Joseph ^b  

^a The George Washington University   (United States)

^b Iowa State University   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMMERCIAL OFF-THE-SHELF COMPONENTS; COMPILE TIME; COTS-BASED SYSTEMS; DENIAL OF SERVICE; EXECUTION TIME; FURTHER DEVELOPMENT; GLUE-CODES; HARDWARE SUPPORTS; MEMORY ACCESS; PLUG-INS; RECOVERY PROCEDURE; SOFTWARE COMPONENT; SOFTWARE DEVELOPMENT; SYSTEM RESOURCES; THIRD PARTIES;

COMPUTER DEBUGGING; COMPUTER SOFTWARE; CONTEXT SENSITIVE GRAMMARS; ELECTRIC CIRCUIT BREAKERS; HARDWARE;

UBIQUITOUS COMPUTING;

EID: 70749140736     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSE.2009.56     Document Type: Conference Paper

References (36)

1. Aleph One, Smashing the stack for fun and profit,Phrack, vol.7, no. 49, Nov. 1996.
2. D. Arora, S. Ravi, A. Raghunathan, N. Jha. Architectural Support for Run-Time Validation of Program Data Properties. IEEE Trans. VLSI systems, Vol. 15, No. 5, May, 2007.
3. T. Austin, E. Larson, and D. Ernst. Simplescalar: an infrastructure for computer system modeling,Computer (Feb 2002).
4. V. Basili and B. Boehm. COTS-Based systems top 10 list. IEEE Computer, Vol.34, No.5, pp.91-95, 2001.
5. A. Brown and D. Patterson. Embracing Failure: A Case for Recovery Oriented Computing (ROC). Proceedings of the High Performance Transactional Processing Symposium, 2001.
6. G. Candea and A. Fox. Recursive Restartability: Turning the Reboot Sledgehammer into a Scalpel. Proceedings of the Workshop on Hot Topics in Operating Systems, May 2001.
7. G. Candea and A. Fox. Crash-Only Software. Proceedings of the Workshop on Hot Topics in Operating Systems, May 2003.
8. G. Candea, S. Kawamoto, Y. Fujiki, G. Friedman, and A. Fox. Microreboot: A Technique for Cheap Recovery. Proceedings of the International Symposium on Operating System Design and Implementation (OSDI), 2004.
9. CERT. US-CERT cyber security bulletin sb04-357. Available at http://www.uscert.gov/cas/bulletins/SB04-357.html, Dec. 2004.
10. M. Corliss, E. Lewis, and A. Roth. Using DISE to Protect Return Addresses from Attack. Proceedings of the Workshop on Architectural Support for Security and Anti-Virus, October 2004.
11. C. Ebert and C. Jones. Embedded Software: Facts, Figures, and Future, Computer, vol. 42, no. 4, pp. 42-52, April, 2009.
12. M.R. Guthaus, J.S. Ringenberg, D. Ernst, T.M. Austin, T. Mudge, and R.B. Brown, Mibench: A free, commercially representative embedded benchmark suite, IEEE 4th Annual Workshop on Workload Characterization (2001).
13. V. Kiriansky, D. Bruening and S. Amarasinghe. Secure Execution via Program Shepherding. Proceedings of the USENIX Security Symposium, 2002.
14. E. Leontie, G. Bloom, B. Narahari, R. Simha, and J. Zambreno. Hardware-enforced fine-grained isolation of untrusted code. in preparation, 2009.
15. C. Mackinnon. Solaris Containers: A Breakthrough Approach to Virtualization. Processor Magazine, Vol. 28, No. 8, p. 33, February 2006.
16. M. Morisio and M. Torchiano. Definition and classification of COTS: a proposal, Int. Conf. Composition-Based Software Sys. (ICCBSS), Feb, 2002.
17. L.M. Molho. Hardware Aspects of Secure Computing, Proc. Spring Joint Computer Conf., pp.135-141, 1970.
18. J. Musmanno. Data Intensive Systems (DIS) Benchmark Performance Summary. AFRL Technical Report AFRL-IF-RS-TR-2003- 198, 2003.
19. Open-source Vulnerability Database (OSVDB), reference IDs 38527 (Apple iTouch / iPhone TIFF Image Handling Privilege Escalation) and 19665 (Sony PSP Photo Viewer TIFF File Overflow).
20. D. Oppenheimer, A. Brown, J. Beck, D. Hettena, J. Kuroda, N. Treuhalt, and D. Patterson. ROC-1. Hardware Support for Recovery-Oriented Computing. IEEE Transactions on Computers, Vol. 51, No.2, pp. 100-107, February 2002.
21. H. Ozdoganoglu, T. Vijaykumar, C. Brodley, B. Kuperman, and A. Jalote. Smashguard: A Hardware Solution to Prevent Security Attacks on the Function Return Address. IEEE Transactions on Computers, Vol. 55, No. 10, pp. 1271-1281, October 2006.
22. K. Pagiamtzis and A. Sheikholesami. Content-addressable memory (CAM) circuits and architectures: a tutorial and survey, IEEE J. Solid-State Circuits, pp. 712-727, 2006.
23. D. Patterson, A. Brown, P. Broadwell, G. Candea, M. Chen, J. Cutler, P. Enriquez, A. Fox, E. Kiciman, M. Merzbacher, D. Oppenheimer, N. Sastry, W. Tetzlaff, J. Traupman, and N. Treuhaft. Recovery-Oriented Computing (ROC): Motivation, Definition, Techniques and Case Studies. Technical Report CSD-02- 1175, University of California, Berkeley, 2002.
24. The Richards Benchmark.http://research.sun.com/people/mario/java- benchmarking/.
25. W. Shi, J. Fryman, G. Gu, H-H. Lee, Y. Zhang, and J. Yang. InfoShield: A Security Architecture for Protecting Information Usage in memory. Proceedings of the International Symposium on High-Performance Computer Architecture (HPCA), Feb. 2006.
26. W. Shi, C. Lu, and C. Lu. Memory-centric Security Architecture. High Performance Embedded Architectures and Compilers,Barcelona, Spain, November 17-18, 2005.
27. E. Spitznagel, D. Taylor and J. Turner. Packet Classification Using Extended TCAMs, Proc. IEEE Int. Conf. Network Protocols (ICNP), 2003.
28. M. Swift, B. Bershad, and H. Levy. Improving the Reliability of Commodity Operating Systems. ACM Transactions on Computer Systems, Vol. 22, No. 4, 2004.
29. Trusted Computing Group. http://www.trustedcomputing.org.
30. P. Wagle and C. Cowan. Stackguard: Simple Stack Smash Protection for GCC. Proceedings of the GCC Developers Summit, pp. 243256, 2003.
31. D. Wagner. Janus: An Approach for Confinement of Untrusted Applications. Technical Report CSD-99-1056, UC Berkeley, 1999.
32. W.H. Ware. Security and Privacy in Computer Systems, Proc. Spring Joint Computer Conf., Vol. 30, pp.287-290, 1967.
33. E. Witchel, J. Cates, and K. Asanovic. Mondrian Memory Protection. Proceedings of the International Symposium on Architectural Support for Programming Languages and Operating Systems (ASPLOS), 2002.
34. X. Zhuang, T. Zhang, H-H. Lee, and S. Pande. Hardware Assisted Control Flow Obfuscation for Embedded Processors. Proceedings of the International Conference on Compilers, Architecture, and Synthesis for Embedded Systems (CASES), September 2004
35. X. Zhuang, T. Zhang, and S. Pande. HIDE: An Infrastructure for Efficiently Protecting Information Leakage on the Address Bus. Proceedings of the International Symposium on Architectural Support for Programming Languages and Operating Systems (ASPLOS), October 2004.
36. K. Zhang, T. Zhang, and S. Pande. Protection through Dynamic Access Control. Proc. 39th Annual IEEE/ACM International Symposium on Microarchitecture, pp.123-134, 2006.