Protecting commodity operating system kernels from vulnerable device drivers

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn , Issue , 2009, Pages 301-310

  Butt, Shakeel ^a   Ganapathy, Vinod ^a   Swift, Michael M ^b   Chang, Chih Cheng ^a  

^a RUTGERS UNIVERSITY   (United States)

^b UNIVERSITY OF WISCONSIN MADISON   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

BUFFER OVERRUN; COMMODITY OPERATING SYSTEMS; CRITICAL CODES; DEVICE DRIVER; LINUX IMPLEMENTATION; PACKET PROCESSING; RUNTIMES; SECURITY ARCHITECTURE;

COMPUTER APPLICATIONS; COMPUTER OPERATING SYSTEMS; DATA STRUCTURES; DATA TRANSFER; PARTICLE SPECTROMETERS; QUALITY ASSURANCE;

SECURITY OF DATA;

EID: 77950823828     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ACSAC.2009.35     Document Type: Conference Paper

References (42)

1. D. Abramson, J. Jackson, S. Muthrasanallur, G. Neiger, G. Regnier, R. Sankaran, I. Schoinas, R. Uhlig, B. Vembu, and J. Weigert. Intel virtualization technology for directed I/O. Intel Technology Journal, 10(3), 2006.
2. AMD. AMD I/O virtualization technology (IOMMU) specification, Feb 2007.
3. Francois Armand. Give a process to your drivers! In EurOpen Autumn 1991, 1991.
4. AusCERT. Esb-2006.0896: Intel network adapter driver local privilege escalation, 2006. http://www.vul.org.au/render.html? it=7058.
5. A. Baliga, V. Ganapathy, and L. Iftode. Automatic inference and enforcement of kernel data structure invariants. In ACSAC, 2008.
6. D. Brumley and D. Song. Privtrans: Automatically partitioning programs for privilege separation. In USENIX Security, 2004.
7. Yuriy Bulygin. Remote and local exploitation of network drivers. In Blackhat-USA, 2007.
8. S. Butt, C. Chang, V. Ganapathy, and M. M. Swift. Protecting commodity OS kernels from vulnerable device drivers. Technical Report DCS-TR-645, Rutgers Univ., Dept. of Comp. Sci., Nov 2008.
9. J. Cache, H. D. Moore, and Skape. Exploiting 802.11 wireless driver vulnerabilities on windows. http://www.uninformed.org/?v=6\&a=2\&t= sumry.
10. S. Chong, J. Liu, A. C. Myers, X. Qi, K. Vikram, L. Zheng, and X. Zheng. Secure web applications via automatic partitioning. In ACM SOSP, 2007.
11. P. Chubb. Get more device drivers out of the kernel! In Ottawa Linux Symp., pages 149-161, 2004.
12. M. Cova, D. Balzarotti, V. Felmgester, and G. Vigna. Swaddler: An approach for the anomaly-based detection of state violations in web applications. In RAID, 2007.
13. Coverity. Anaylsis of the Linux kernel, 2004. Available at http://www.coverity.com.
14. Brian Demsky, Michael D. Ernst, Philip J. Guo, Stephen McCamant, Jeff H. Perkins, and Martin Rinard. Inference and enforcement of data structure consistency specifications. In ISSTA, 2006.
15. Information Networks Division. Netperf: A network performance benchmark. http://www.netperf.org.
16. J. Elson. FUSD: A Linux framework for user-space devices, 2004. User manual for FUSD 1.0.
17. Ú. Erlingsson, T. Roeder, and T. Wobber. Virtual environments for unreliable extensions. Technical Report MSR-TR-05-82, Microsoft Research, 2005.
18. Ulfar Erlingsson, Martin Abadi, Michael Vrable, Mihai Budiu, and George Necula. XFI: Software guards for system address spaces. In OSDI, 2006.
19. M. D. Ernst, J. H. Perkins, P. J. Guo, S. McCamanat, C. Pacheco, M. S. Tschantz, and C. Xiao. The Daikon system for dynamic detection of likely invariants. Science of Computer Programming, 69(1-3), 2007.
20. K. Fraser, S. Hand, R. Neugebauer, I. Pratt, A. Warfield, and M. Williamson. Safe hardware access with the Xen virtual machine monitor. In Workshop on Operating System and Architectural Support for the On-Demand IT Infrastructure, 2004.
21. V. Ganapathy, M. Renzelmann, A. Balakrishnan, M. M. Swift, and S. Jha. The design and implementation of microdrivers. In ACM ASPLOS, 2008.
22. S. Hangal and M. S. Lam. Tracking down software bugs using automatic anomaly detection. In ICSE, 2002.
23. Rob Johnson and DavidWagner. Finding user/kernel pointer bugs with type inference. In USENIX Security Symposium, 2004.
24. B. Leslie, P. Chubb, N. Fitzroy-Dale, S. Gotz, C. Gray, L. Macpherson, D. Potts, Y. Shen, K. Elphinstone, and G. Heiser. User-level device drivers: Achieved performance. Jour. Comp. Sci. and Tech., 20(5), 2005.
25. J. LeVasseur, V. Uhlig, J. Stoess, and S. Gotz. Unmodified device driver reuse and improved system dependability via virtual machines. In OSDI, 2004.
26. J. Liedtke. On μ-kernel construction. In ACM SOSP, 1995.
27. D. Maynor. Os X kernel-mode exploitation in a weekend. http://uninformed.org/index.cgi?v=8\&a=4.
28. Microsoft. Architecture of the user-mode driver framework, 2006.
29. Microsoft Inc. Microsoft interface definition language.
30. Linux device driver vulnerabilities from the MITRE database. CVEs 2007-4571, 2007-05, 2007-4308, 2008-0007, 2005-0504, 2006-2935, 2006-2936, 2005-3180, 2004-1017, 2007-4997, 2006-11368
31. G. C. Necula, S. McPeak, S. P. Rahul, and W. Weimer. CIL: Intermediate languages and tools for analysis and transformation. In Compiler Construction, 2002.
32. George C. Necula, Scott McPeak, and Westley Weimer. CCured: Type-safe retrofitting of legacy code. In Symposium Principles of Programming Languages, 2002.
33. N. L. Petroni, T. Fraser, A. Walters, and W. Arbaugh. An architecture for specification-based detection of semantic integrity violations in kernel dynamic data. In USENIX Security Symposium, 2006.
34. N. L. Petroni and M. W. Hicks. Automated detection of persistent kernel control- ow attacks. In ACM CCS, 2007.
35. Michael M. Swift, Brian N. Bershad, and Henry M. Levy. Improving the reliability of commodity operating systems. ACM Transactions on Computer Systems, 23(1), 2005.
36. L. Tan, E. M. Chan, R. Farivar, N. Mallick, J. C. Carlyle, F. M. David, and R. C. Campbell. iKernel: Isolating buggy and malicious device drivers using hardware virtualization support. In IEEE Intl. Symp. on Dependable, Autonomic and Secure Computing, 2007.
37. L. Torvalds. UIO: Linux patch for user-mode I/O, 2007.
38. K. T. Van Maren. The Fluke device driver framework. Master's thesis, Dept. of Computer Science, Univ. of Utah, 1999.
39. Dan Williams, Patrick Reynolds, Kevin Walsh, Emin Gun Sirer, and Fred B. Schneider. Device driver safety through a reference validation mechanism. In OSDI, 2008.
40. E.Witchel, J. Rhee, and K. Asanovic. Mondrix: Memory isolation for linux. In ACM SOSP, 2005.
41. M. Young, M. Accetta, R. Baron, W. Bolosky, D. Golub, R. Rashid, and A. Tevanian. Mach: A new kernel foundation for UNIX development. In Summer USENIX Conference, 1986.
42. F. Zhou, J. Condit, Z. Anderson, I. Bagrak, R. Ennals, M. Harren, G. Necula, and E. Brewer. SafeDrive: Safe and recoverable extensions using language-based techniques. In OSDI, 2006.