Hardware enforcement of application security policies using tagged memory

Proceedings of the 8th USENIX Symposium on Operating Systems Design and Implementation, OSDI 2008

Volumn , Issue , 2019, Pages 225-240

  Zeldovich, Nickolai ^a   Kannan, Hari ^b   Dalton, Michael ^b   Kozyrakis, Christos ^b  

^a MASSACHUSETTS INSTITUTE OF TECHNOLOGY   (United States)

^b STANFORD UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER HARDWARE; HARDWARE SECURITY; SECURITY SYSTEMS; SYSTEMS ANALYSIS; UNIX;

APPLICATION SECURITY; FPGA BOARDS; INFORMATION FLOWS; PAGE TABLE; PROTECTION MECHANISMS; SYSTEM PROTOTYPE; SYSTEM STRUCTURES; TAGGED MEMORY;

MEMORY ARCHITECTURE;

EID: 77952337533     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (36)

1. D. Abramson, J. Jackson, S. Muthrasanallur, G. Neiger, G. Regnier, R. Sankaran, I. Schoinas, R. Uhlig, B. Vembu, and J. Weigert. Intel Virtualization Technology for directed I/O. Intel Technology Journal, 10(3):179-192, August 2006.
2. D. E. Bell and L. LaPadula. Secure computer system: Unified exposition and Multics interpretation. Technical Report MTR-2997, Rev. 1, MITRE Corp., Bedford, MA, March 1976.
3. K. J. Biba. Integrity considerations for secure computer systems. Technical Report TR-3153, MITRE Corp., Bedford, MA, April 1977.
4. A. C. Bomberger, A. P. Frantz, W. S. Frantz, A. C. Hardy, N. Hardy, C. R. Landau, and J. S. Shapiro. The KeyKOS nanokernel architecture. In Proc. of the USENIX Workshop on Micro-Kernels and Other Kernel Architectures, April 1992.
5. H. Chen, D. Wagner, and D. Dean. Setuid demystified. In Proc. of the 11th USENIX Security Symposium, San Francisco, CA, August 2002.
6. S. Chen, J. Xu, N. Nakka, Z. Kalbarczyk, and R. K. Iyer. Defeating memory corruption attacks via pointer taintedness detection. In Proc. of the International Conference on Dependable Systems and Networks, Yokohama, Japan, June 2005.
7. X. Chen, T. Garfinkel, E. C. Lewis, P. Subrahmanyam, C. A. Waldspurger, D. Boneh, J. Dwoskin, and D. R. K. Ports. Overshadow: A virtualization-based approach to retrofitting protection in commodity operating systems. In Proc. of the 13th ASPLOS, Seattle, WA, March 2008.
8. J. R. Crandall and F. T. Chong. MINOS: Control data attack prevention orthogonal to memory model. In Proc. of the 37th Intl. Symposium on Microarchitecture, Portland, OR, December 2004.
9. M. Dalton, H. Kannan, and C. Kozyrakis. Raksha: A flexible information flow architecture for software security. In Proc. of the 34th ISCA, San Diego, CA, June 2007.
10. P. Efstathopoulos, M. Krohn, S. VanDeBogart, C. Frey, D. Ziegler, E. Kohler, D. Mazières, F. Kaashoek, and R. Morris. Labels and event processes in the Asbestos operating system. In Proc. of the 20th SOSP, pages 17-30, Brighton, UK, October 2005.
11. Gaisler Research. LEON3 SPARC Processor. http://www.gaisler.com.
12. G. C. Hunt, J. R. Larus, M. Abadi, M. Aiken, P. Barham, M. Fahndrich, C. Hawblitzel, O. Hod-son, S. Levi, N. Murphy, B. Steensgaard, D. Tarditi, T. Wobber, and B. Zill. An overview of the Singularity project. Technical Report MSR-TR-2005-135, Microsoft, Redmond, WA, October 2005.
13. IBM Corporation. IBM system i. http://www-03.ibm.com/systems/i.
14. Intel Corporation. Intel i960 processors. http://developer.intel.com/design/i960/.
15. P. A. Karger, M. E. Zurko, D. W. Bonin, A. H. Mason, and C. E. Kahn. A VMM security kernel for the VAX architecture. In Proc. of the 1990 IEEE Symposium on Security and Privacy, pages 2-19, Oakland, CA, May 1990.
16. E. Koldinger, J. Chase, and S. Eggers. Architectural support for single address space operating systems. Technical Report 92-03-10, University of Washington, Department of Computer Science and Engineering, March 1992.
17. M. Krohn. Building secure high-performance web services with OKWS. In Proc. of the 2004 USENIX, June-July 2004.
18. M. Krohn, A. Yip, M. Brodsky, N. Cliffer, M. F. Kaashoek, E. Kohler, and R. Morris. Information flow control for standard OS abstractions. In Proc. of the 21st SOSP, Stevenson, WA, October 2007.
19. B. Lampson, M. Abadi, M. Burrows, and E. P. Wobber. Authentication in distributed systems: Theory and practice. ACM TOCS, 10(4):265-310, 1992.
20. H. M. Levy. Capability-Based Computer Systems. Digital Press, 1984.
21. J. M. McCune, B. Parno, A. Perrig, M. K. Reiter, and A. Seshadri. How low can you go? Recommendations for hardware-supported minimal TCB code execution. In Proc. of the 13th ASPLOS, Seattle, WA, March 2008.
22. President's Information Technology Advisory Committee (PITAC). Cybersecurity: A crisis of prioritization. http://www.nitrd.gov/pitac/reports/20050301 cybersecurity/cybersecurity.pdf, February 2005.
23. J. M. Rushby. Design and verification of secure systems. In Proc. of the 8th SOSP, pages 12-21, Pacific Grove, CA, December 1981.
24. J. Rutkowska and R. Wojtczuk. Preventing and detecting Xen hypervisor subversions. http://invisiblethingslab.com/bh08/part2-full.pdf, August 2008.
25. M. D. Schroeder and J. H. Saltzer. A hardware architecture for implementing protection rings. Comm. of the ACM, 15(3):157-170, 1972.
26. A. Seshadri, M. Luk, N. Qu, and A. Perrig. Secvisor: A tiny hypervisor to provide lifetime kernel code integrity for commodity oses. In Proc. of the 21st SOSP, pages 335-350, October 2007.
27. J. S. Shapiro, J. M. Smith, and D. J. Farber. EROS: a fast capability system. In Proc. of the 17th SOSP, December 1999.
28. W. Shi, H.-H. Lee, G. Gu, L. Falk, T. Mudge, and M. Ghosh. InfoShield: A security architecture for protecting information usage in memory. In Proc. of the 12th HPCA, Austin, TX, February 2006.
29. G. E. Suh, J. W. Lee, D. Zhang, and S. Devadas. Secure program execution via dynamic information flow tracking. In Proc. of the 11th ASPLOS, Boston, MA, October 2004.
30. M. M. Swift, B. N. Bershad, and H. M. Levy. Improving the reliability of commodity operating systems. ACM TOCS, 23(1), 2005.
31. R. Ta-Min, L. Litty, and D. Lie. Splitting interfaces: Making trust between applications and operating systems configurable. In Proc. of the 7th OSDI, pages 279-292, Seattle, WA, November 2006.
32. N. Vachharajani, M. J. Bridges, J. Chang, R. Rangan, G. Ottoni, J. A. Blome, G. A. Reis, M. Vachharajani, and D. I. August. RIFLE: An architectural framework for user-centric information-flow security. In Proc. of the 37th International Symposium on Microarchitecture, Portland, OR, December 2004.
33. E. Witchel, J. Cates, and K. Asanovic. Mondrian memory protection. In Proc. of the 10th ASPLOS, San Jose, CA, October 2002.
34. E. Witchel, J. Rhee, and K. Asanovic. Mondrix: Memory isolation for linux using mondriaan memory protection. In Proc. of the 20th SOSP, pages 31-44, October 2005.
35. N. Zeldovich, S. Boyd-Wickizer, E. Kohler, and D. Mazières. Making information flow explicit in HiStar. In Proc. of the 7th OSDI, pages 263-278, Seattle, WA, November 2006.
36. N. Zeldovich, S. Boyd-Wickizer, and D. Mazières. Securing distributed systems with information flow control. In Proc. of the 5th NSDI, pages 293-308, San Francisco, CA, April 2008.