Building a hypervisor on a formally verifiable protection layer

Proceedings of the Annual Hawaii International Conference on System Sciences

Volumn , Issue , 2013, Pages 5069-5078

  McCoyd, Michael ^a   Krug, Robert Bellarmine ^a   Goel, Deepak ^a   Dahlin, Mike ^a   Young, William ^a  

^a University of Texas at Austin   (United States)

Author keywords

Formal verification; Hardware virtualization; Hypervisor

Indexed keywords

COMPLETE CONTROL; FORMAL VERIFICATIONS; HARDWARE VIRTUALIZATION; HYPERVISOR; PROTECTION LAYERS; TRUSTED COMPUTING BASE; VIRTUALIZED ENVIRONMENT; VIRTUALIZED RESOURCES;

HARDWARE; SCHEDULING; SYSTEMS SCIENCE;

VIRTUAL REALITY;

EID: 84875520343     PISSN: 15301605     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/HICSS.2013.121     Document Type: Conference Paper

References (32)

1. M. Kaufmann, J. S. Moore, and P. Manolios, Computer-Aided Reasoning: An Approach. Norwell, MA, USA: Kluwer Academic Publishers, 2000.
2. M. Kaufmann, J. S. Moore, and P. Manolios, Computer-Aided Reasoning: ACL2 Case Studies. Norwell, MA, USA: Kluwer Academic Publishers, 2000.
3. P. Barham, B. Dragovic, K. Fraser, S. Hand, T. Harris, A. Ho, R. Neugebauer, I. Pratt, and A. Warfield, "Xen and the art of virtualization," in SOSP '03: Proceedings of the Nineteenth ACM Symposium on Operating Systems Principles, (New York, NY, USA), pp. 164-177, ACM, 2003.
4. Amazon, "Amazon Web Services: Overview of Security Processes." http://d36cz9buwru1tt.cloudfront.net/pdf/AWS-Security-Whitepaper.pdf, 2011.
5. Rackspace, "Cloud Servers and Cloud Computing FAQ." http://www.rackspace.com/cloud/cloud-hosting-products/servers/faq/, 2012.
6. T. Leemhuis, "Kernel Log: 15,000,000 lines, 3.0 promoted to long-term kernel." http://h-online.com/-1408062, January 2012.
7. R. Vojtczuk, "Adventures with a certain Xen vulnerability (in the PVFB backend)." http://invisiblethingslab.com/resources/misc08/xenfb- adventures-10.pdf, October 2008.
8. G. J. Popek and R. P. Goldberg, "Formal requirements for virtualizable third generation architectures," Commun. ACM, vol. 17, pp. 412-421, July 1974.
9. M. McCoyd, "Minvisor: Provable machine protection with optional fidelity," Tech. Rep. HR-12-06, UT Austin, 2012.
10. M. Dahlin, R. Johnson, R. B. Krug, M. McCoyd, and W. Young, "Toward the verification of a simple hypervisor," in Proceedings 10th International Workshop on the ACL2 Theorem Prover and its Applications, Austin, Texas, USA, November 3-4, 2011 (D. Hardin and J. Schmaltz, eds.), vol. 70 of Electronic Proceedings in Theoretical Computer Science, pp. 28-45, Open Publishing Association, 2011.
11. Advanced Micro Devices, "AMD64 virtualization: Secure virtual machine architecture reference manual." AMD Publication no. 33047 rev. 3.01, May 2005.
12. Intel Corporation, "Lagrande technology preliminary architecture specification." Intel Publication no. D52212, May 2006.
13. A. Whitaker, M. Shaw, and S. D. Gribble, "Scale and performance in the denali isolation kernel," SIGOPS Oper. Syst. Rev., vol. 36, pp. 195-209, Dec. 2002.
14. J. McDermott, J. Kirby, B. Montrose, T. Johnson, and M. Kang, "Re-engineering Xen internals for higher-assurance security," Information Security Technical Report, vol. 13, no. 1, pp. 17-24, 2008.
15. J. McDermott and L. Freitas, "A formal security policy for Xenon," in FMSE '08: Proceedings of the 6th ACM workshop on Formal methods in security engineering, (New York, NY, USA), pp. 43-52, ACM, 2008.
16. A. Roscoe, J. Woodcock, and L. Wulf, "Non-interference through nondeterminism," in Proceedings ESORICS, pp. 33-52, November 1997.
17. A. Seshadri, M. Luk, N. Qu, and A. Perrig, "SecVisor: a tiny hypervisor to provide lifetime kernel code integrity for commodity OSes," in Proceedings of twenty-first ACM SIGOPS symposium on Operating systems principles, SOSP '07, (New York, NY, USA), pp. 335-350, ACM, 2007.
18. J. Franklin, A. Seshadri, N. Qu, A. Datta, and S. Chaki, "Attacking, Repairing, and Verifying SecVisor: A Retrospective on the Security of a Hypervisor," Tech. Rep. CMU-CyLab-08-008, Carnegie Mellon University, June 2008.
19. E. Cohen, M. Dahlweid, M. Hillebrand, D. Leinenbach, M. Moskal, T. Santen, W. Schulte, and S. Tobies, "VCC: A practical system for verifying concurrent C," in Proceedings of the 22nd International Conference on Theorem Proving in Higher Order Logics, TPHOLs '09, (Berlin, Heidelberg), pp. 23-42, Springer-Verlag, 2009.
20. E. Alkassar and W. Paul, "On the verification of a "baby" hypervisor for a risc machine; draft 0." available online, January 2008.
21. D. Leinenbach and T. Santen, "Verifying the Microsoft Hyper-V Hypervisor with VCC," in Proceedings of the 2nd World Congress on Formal Methods, FM '09, (Berlin, Heidelberg), pp. 806-809, Springer-Verlag, 2009.
22. S. Hoffmann, "Formalising PC hardware: A model of the x86 architecture," Master's thesis, Technische Universitat Dresden, 2003.
23. G. Klein and H. Tuch, "Towards verified virtual memory in L4." In K. Slind, editor, TPHOLs Emerging Trends '04, Park City, Utah, 2004.
24. G. Klein, K. Elphinstone, G. Heiser, J. Andronick, D. Cock, P. Derrin, D. Elkaduwe, K. Engelhardt, R. Kolanski, M. Norrish, T. Sewell, H. Tuch, and S. Winwood, "seL4: formal verification of an OS kernel," in Proceedings of the ACM SIGOPS 22nd symposium on Operating systems principles, SOSP '09, (New York, NY, USA), pp. 207-220, ACM, 2009.
25. "ACL2 Applications." http://www.cs.utexas.edu/users/moore/acl2/ v4-3/INTERESTING-APPLICATIONS.html.
26. AMD, "AMD Manuals." http://developer.amd.com/documentation/ guides/pages/default.aspx, Sept 2011.
27. Intel, "Intel Manuals." http://www.intel.com/content/www/us/en/ processors/architectures-software-developer-manuals.html, Sept 2011.
28. W. Bevier, W. Hunt, J. S. Moore, and W. Young, "Special issue on system verification," Journal of Automated Reasoning, vol. 5, pp. 409-530, 1989.
29. "ACL2 Home Page." http://www.cs.utexas.edu/~moore/acl2/
30. K. Thompson, "Reflections on trusting trust," Commun. ACM, vol. 27, pp. 761-763, Aug. 1984.
31. AMD, "AMD64 Architecture Programmer's Manual." http://developer.amd.com/documentation/guides/pages/default.aspx, Sept 2011.
32. R. E. Bryant and D. R. O'Hallaron, Computer Systems: A Programmer's Perspective. USA: Addison-Wesley Publishing Company, 2nd ed., 2010.