PrivExec: Private execution as an operating system service

Proceedings - IEEE Symposium on Security and Privacy

Volumn , Issue , 2013, Pages 206-220

  Onarlioglu, Kaan ^a   Mulliner, Collin ^a   Robertson, William ^a   Kirda, Engin ^a  

^a Northeastern University   (United States)

Author keywords

operating systems; privacy

Indexed keywords

DESIGN AND IMPLEMENTATIONS; FILESYSTEM; LINUX KERNEL; RECOMPILATION; SENSITIVE DATAS; SYSTEM SERVICES; USER INFORMATION;

COMPUTER OPERATING SYSTEMS; DATA PRIVACY; DIGITAL STORAGE; TOOLS;

CRYPTOGRAPHY;

EID: 84881239409     PISSN: 10816011     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SP.2013.24     Document Type: Conference Paper

References (41)

1. Aufs. http://aufs.sourceforge.net/.
2. BitLocker. http://windows.microsoft.com/en-US/windows7/products/features/ bitlocker.
3. Bonnie++. http://www.coker.com.au/bonnie++/.
4. dm-crypt. http://code.google.com/p/cryptsetup/wiki/DMCrypt.
5. eCryptfs. https://launchpad.net/ecryptfs.
6. EncFS. www.arg0.net/encfs.
7. Overlayfs. http://git.kernel.org/?p=linux/kernel/git/mszeredi/vfs.git.
8. Selenium - Web Browser Automation. http://seleniumhq.org/.
9. shred(1) - Linux Man page. http://www.gnu.org/software/coreutils/.
10. Unionfs. http://unionfs.filesystems.org/.
11. xdotool. http://www.semicomplete.com/projects/xdotool/xdotool.xhtml.
12. G. Aggarwal, E. Bursztein, C. Jackson, and D. Boneh. An Analysis of Private Browsing Modes in Modern Browsers. In Proceedings of the USENIX Security Symposium, Berkeley, CA, USA, 2010. USENIX Association.
13. A. Alsaid and D. Martin. Detecting Web Bugs with Bugnosis: Privacy Advocacy through Education. In Proceedings of the International Conference on Privacy Enhancing Technologies, Berlin, Germany, 2003. Springer-Verlag.
14. S. Bauer and N. B. Priyantha. Secure Data Deletion for Linux File Systems. In Proceedings of the USENIX Security Symposium, Berkeley, CA, USA, 2001. USENIX Association.
15. M. Blaze. A Cryptographic File System for UNIX. In Proceedings of the ACM Conference on Computer and Communications Security, New York, NY, USA, 1993. ACM.
16. D. Boneh and R. J. Lipton. A Revocable Backup System. In Proceedings of the USENIX Security Symposium, Berkeley, CA, USA, 1996. USENIX Association.
17. K. Borders, E. V. Weele, B. Lau, and A. Prakash. Protecting Confidential Data on Personal Computers with Storage Capsules. In Proceedings of the USENIX Security Symposium, Berkeley, CA, USA, 2009. USENIX Association.
18. J. Chow, B. Pfaff, T. Garfinkel, and M. Rosenblum. Shredding Your Garbage: Reducing Data Lifetime through Secure Deallocation. In Proceedings of the USENIX Security Symposium, Berkeley, CA, USA, 2005. USENIX Association.
19. A. Clover. CSS visited pages disclosure. http://seclists.org/bugtraq/ 2002/Feb/271, 2002.
20. A. M. Dunn, M. Z. Lee, S. Jana, S. Kim, M. Silberstein, Y. Xu, V. Shmatikov, and E. Witchel. Eternal Sunshine of the Spotless Machine: Protecting Privacy with Ephemeral Channels. In Proceedings of the USENIX Conference on Operating Systems Design and Implementation, Berkeley, CA, USA, 2012. USENIX Association.
21. E. W. Felten and M. A. Schneider. Timing Attacks on Web Privacy. In Proceedings of the ACM Conference on Computer and Communications Security, New York, NY, USA, 2000. ACM.
22. J. A. Halderman, S. D. Schoen, N. Heninger, W. Clarkson, W. Paul, J. A. Calandrino, A. J. Feldman, J. Appelbaum, and E. W. Felten. Lest We Remember: Cold Boot Attacks on Encryption Keys. In Proceedings of the USENIX Security Symposium, Berkeley, CA, USA, 2008. USENIX Association.
23. F. Hsu, H. Chen, T. Ristenpart, J. Li, and Z. Su. Back to the Future: A Framework for Automatic Malware Removal and System Repair. In Proceedings of the Annual Computer Security Applications Conference, 2006.
24. C. Jackson, A. Bortz, D. Boneh, and J. C. Mitchell. Protecting Browser State from Web Privacy Attacks. In Proceedings of the International World Wide Web Conference, New York, NY, USA, 2006. ACM.
25. S. Jain, F. Shafique, V. Djeric, and A. Goel. Application-Level Isolation and Recovery with Solitude. In Proceedings of the European Conference on Computer Systems, New York, NY, USA, 2008. ACM.
26. M. Jakobsson and S. Stamm. Invasive Browser Sniffing and Countermeasures. In Proceedings of the International World Wide Web Conference, New York, NY, USA, 2006. ACM.
27. S. Jana, D. E. Porter, and V. Shmatikov. TxBox: Building Secure, Efficient Sandboxes with System Transactions. In Proceedings of the IEEE Symposium on Security and Privacy, Washington, DC, USA, 2011. IEEE Computer Society.
28. A. Janc and L. Olejnik. Web Browser History Detection as a Real-world Privacy Threat. In Proceedings of the European Conference on Research in Computer Security, Berlin, Germany, 2010. Springer-Verlag.
29. N. Joukov, H. Papaxenopoulos, and E. Zadok. Secure Deletion Myths, Issues, and Solutions. In Proceedings of the ACM Workshop on Storage Security and Survivability, New York, NY, USA, 2006. ACM.
30. Z. Liang, W. Sun, V. N. Venkatakrishnan, and R. Sekar. Alcatraz: An Isolated Environment for Experimenting with Untrusted Software. ACM Transactions on Information and System Security, 12(3):14:1-14:37, 2009.
31. R. Perlman. The Ephemerizer: Making Data Disappear. Technical report, Sun Microsystems, Inc., Mountain View, CA, USA, 2005.
32. P. A. H. Peterson. Cryptkeeper: Improving Security with Encrypted RAM. In Proceedings of the IEEE International Conference on Technologies for Homeland Security, Waltham, MA, USA, 2010.
33. Z. N. J. Peterson, R. Burns, J. Herring, A. Stubblefield, and A. D. Rubin. Secure Deletion for a Versioning File System. In Proceedings of the USENIX Conference on File and Storage Technologies, Berkeley, CA, USA, 2005. USENIX Association.
34. N. Provos. Encrypting Virtual Memory. In Proceedings of the USENIX Security Symposium, Berkeley, CA, USA, 2000. USENIX Association.
35. J. Reardon, S. Capkun, and D. Basin. Data Node Encrypted File System: Efficient Secure Deletion for Flash Memory. In Proceedings of the USENIX Security Symposium, Berkeley, CA, USA, 2012. USENIX Association.
36. H. Said, A. N. Mutawa, A. A. Ibtesam, and M. Guimaraes. Forensic Analysis of Private Browsing Artifacts. In Proceedings of the International Conference on Innovations in Information Technology, Abu Dhabi, United Arab Emirates, 2011.
37. U. Shankar and C. Karlof. Doppelganger: Better Browser Privacy Without the Bother. In Proceedings of the ACM Conference on Computer and Communications Security, New York, NY, USA, 2006. ACM.
38. G. E. Suh, D. Clarke, B. Gassend, M. van Dijk, and S. Devadas. AEGIS: Architecture for Tamper-Evident and Tamper-Resistant Processing. In Proceedings of the Annual International Conference on Supercomputing, New York, NY, USA, 2003. ACM.
39. Y. Tang, P. Ames, S. Bhamidipati, A. Bijlani, R. Geambasu, and N. Sarda. CleanOS: Limiting Mobile Data Exposure with Idle Eviction. In Proceedings of the USENIX Conference on Operating Systems Design and Implementation, Berkeley, CA, USA, 2012. USENIX Association.
40. D. L. C. Thekkath, M. Mitchell, P. Lincoln, D. Boneh, J. Mitchell, and M. Horowitz. Architectural Support for Copy and Tamper Resistant Software. In Proceedings of the International Conference on Architectural Support for Programming Languages and Operating Systems, New York, NY, USA, 2000. ACM.
41. E. Zadok, I. Badulescu, and A. Shender. Cryptfs: A Stackable Vnode Level Encryption File System. Technical report, Computer Science Department, Columbia University, 1998.