Protecting confidential data on personal computers with storage capsules

Proceedings of the 18th USENIX Security Symposium

Volumn , Issue , 2009, Pages 367-382

  Borders, Kevin ^a   Weele, Eric Vander ^a   Lau, Billy ^a   Prakash, Atul ^a  

^a UNIVERSITY OF MICHIGAN   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER SYSTEM FIREWALLS; COMPUTER VIRUSES; CRYPTOGRAPHY; DIGITAL STORAGE; HARDWARE SECURITY; INTRUSION DETECTION;

ANTIVIRUS SOFTWARES; CONFIDENTIAL DATA; CONFIDENTIAL FILES; CONFIDENTIAL INFORMATION; COVERT CHANNELS; INTRUSION DETECTION SYSTEMS; NEW APPROACHES; SECURITY CONTROLS;

PERSONAL COMPUTERS;

EID: 84870682965     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (36)

1. st ACM Conference on Computer and Communications Security, Nov. 1993.
2. nd ACM Conference on Computer and Communication Security (CCS), Nov. 1994.
3. E. Bugnion, S. Devine, K. Govil, and M. Rosenblum. Disco: Running Commodity Operating Systems on Scalable Multiprocessors. ACM Transactions on Computer Systems, 15(4), Nov. 1997.
4. rd USENIX Workshop on Hot Topics in Security (HOTSEC '08), Aug. 2008.
5. M. Delio. Linux: Fewer Bugs than Rivals. Wired Magazine, http://www.wired.com/ software/coolapps/news/2004/12/66022, Dec. 2004.
6. D. Denning and P. Denning. Certification of Programs for Secure Information Flow. Communications of the ACM, 20(7), Jul. 1977.
7. C. Fruhwirth. LUKS – Linux Unified Key Setup. http://code.google.com/p/cryptsetup/, Jan. 2009.
8. th ACM Symposium on Operating Systems Principles (SOSP), Oct. 2003.
9. th Workshop on Hot Topics in Operating Systems, Jun. 2005.
10. B. Gold, R. Linde, R. Peeler, M. Schaefer, J. Scheid, and P. Ward. A Security Retrofit of VM/370. In AFIPS Proc., 1979 National Computer Conference, 1979.
11. K. Govil, D. Teodosiu, Y. Huang, and M. Rosenblum. Cellular Disco: Resource Management Using Virtual Clusters on Shared-Memory Multiprocessors. In Proc. of the Symposium on Operating System Principles, Dec. 1999.
12. J. Halderman, S. Schoen, N. Heninger, W. Clarkson, W. Paul, J. Calandrino, A. Feldman, J. Appelbaum, and E. Felten. Lest We Remember: Cold Boot Attacks on Encryption Keys. In Proc. of 17th USENIX Security Symposium, Jul. 2008.
13. IEEE Computer Society. IEEE Standard for Cryptographic Protection of Data on Block-Oriented Storage Devices. IEEE Std 1619-2007, Apr. 2008.
14. O. Lagerkvist. ImDisk Virtual Disk Driver. http://www.ltr-data.se/opencode. html#ImDisk, Dec. 2008.
15. th USENIX Security Symposium, Aug. 2003.
16. st ACM Conference on Computer and Communication Security (CCS), Nov. 1993.
17. R. Kemmerer. An Approach to Identifying Storage and Timing Channels. In ACM Transactions on Computer Systems, 1(3), Aug. 1983.
18. M. Liskov, R. Rivest, and D. Wagner. Tweak-able Block Ciphers. In Advances in Cryptology – CRYPTO’02, 2002.
19. R. Meushaw and D. Simard. NetTop: Commercial Technology in High Assurance Applications. http://www.vmware.com/pdf/TechTrendNotes.pdf, 2000.
20. Microsoft Corporation. BitLocker Drive Encryption: Technical Overview. http://technet.microsoft.com/en-us/library/cc732774 .aspx, Jan. 2009.
21. I. Moskowitz and A. Miller. Simple Timing Channels. In Proc. of the IEEE Symposium on Security and Privacy, May 1994.
22. A. Myers. JFlow: Practical Mostly-Static Information Flow Control. In Proc. of the 26th ACM Symposium on Principles of Programming Languages (POPL), Jan. 1999.
23. National Security Agency. Security-enhanced Linux. http://www.nsa.gov/selinux, Jan. 2008.
24. C. Percival. Cache Missing for Fun and Profit. In Proc. of BSDCan 2005, May 2005.
25. A. Roshal. WinRAR Archiver, a Powerful Tool to Process RAR and ZIP Files. http://www.rarlab.com/, Jan. 2009.
26. th USENIX Security Symposium, Aug. 2004.
27. Secunia. Xen 3.x – Vulnerability Report. http://secunia.com/product/15863/?task=statistics, Jan. 2009.
28. Secunia. Linux Kernel 2.6.x – Vulnerability Report. http://secunia.com/product/2719/?task=statistics, Jan. 2009.
29. Trusted Computing Group. Trusted Platform Module Main Specification. http://www.trustedcomputinggroup.org, Ver. 1.2, Rev. 94, June 2006.
30. J. Trostle. Multiple Trojan Horse Systems and Covert Channel Analysis. In Proc. of Computer Security Foundations Workshop IV, Jun. 1991.
31. TrueCrypt Foundation. TrueCrypt – Free Open-Source On-the-fly Encryption. www.truecrypt.org, Jan. 2009.
32. C. Waldspurger. Memory Resource Management in VMware ESX Server. In Proc. of the 5th Symposium on Operating Systems Design and Implementation, Dec. 2002.
33. nd Annual Computer Security Applications Conference (ACSAC), Dec. 2006.
34. T. Weber. Criminals ‘May Overwhelm the Web’. BBC News, http://news.bbc.co.uk/1/hi/business/6298641.stm, Jan. 2007.
35. WinZip International LLC. WinZip – The Zip File Utility for Windows. http://www.winzip.com/, Jan. 2009.
36. XenSource, Inc. Xen Community. http://xen.xensource.com/, Apr. 2008.