SAFE: A clean-slate architecture for secure systems

2013 IEEE International Conference on Technologies for Homeland Security, HST 2013

Volumn , Issue , 2013, Pages 570-576

  Chiricescu, Silviu ^c   Dehon, Andre ^a   Demange, Delphine ^a   Iyer, Suraj ^c   Kliger, Aleksey ^c   Morrisett, Greg ^b   Pierce, Benjamin C ^a   Reubenstein, Howard ^c   Smith, Jonathan M ^a   Sullivan, Gregory T ^c   Thomas, Arun ^c   Tov, Jesse ^b   White, Christopher M ^c   Wittenberg, David ^c  

^a BAE SYSTEMS   (United States)

^b UNIVERSITY OF PENNSYLVANIA   (United States)

^c HARVARD UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CLEAN-SLATE ARCHITECTURES; COMPUTING SYSTEM; DYNAMIC INFORMATION; HARDWARE ARCHITECTURE; RUN-TIME SOFTWARE; SECURITY FEATURES; SECURITY PROPERTIES; SYSTEM SECURITY;

COMPUTER PROGRAMMING LANGUAGES; HARDWARE; NATIONAL SECURITY; SECURITY SYSTEMS;

SLATE;

EID: 84893320084     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/THS.2013.6699066     Document Type: Conference Paper

References (22)

1. U. Dhawan, A. Kwon, E. Kadric, C. Hriţcu, B. C. Pierce, J. M. Smith, A. DeHon, G. Malecha, G. Morrisett, T. F. Knight, Jr., A. Sutherland, T. Hawkins, A. Zyxnfryx, D. Wittenberg, P. Trei, S. Ray, and G. Sullivan, "Hardware support for safety interlocks and introspection", in SASO Workshop on Adaptive Host and Network Security, Sep. 2012. [Online]. Available: http://www.crash-safe.org/sites/default/files/interlocks ahns2012.pdf
2. U. Dhawan and A. DeHon, "Area-efficient near-associative memories on FPGAs", in International Symposium on Field-Programmable Gate Arrays, (FPGA2013), Feb. 2013. [Online]. Available: http://www.crash-safe.org/node/21
3. C. Hriţcu, J. Hughes, B. C. Pierce, A. Spector-Zabusky, D. Vytiniotis, A. A. de Amorim, and L. Lampropoulos, "Testing noninterference, quickly", in 18th ACM SIGPLAN International Conference on Functional Programming (ICFP), Sep. 2013, to appear. [Online]. Available: http://www.crash-safe.org/node/24
4. A. DeHon, B. Karel, T. F. Knight, Jr., G. Malecha, B. Montagu, R. Morisset, G. Morrisett, B. C. Pierce, R. Pollack, S. Ray, O. Shivers, J. M. Smith, and G. Sullivan, "Preliminary design of the SAFE platform", in 6th Workshop on Programming Languages and Operating Systems, ser. PLOS, Oct. 2011. [Online]. Available: http://www.crash-safe.org/sites/default/files/plos11- final 0.pdf
5. MITRE, "Common weakness enumeration", http://cwe.mitre.org/, 2013.
6. J. Brown, J. Grossman, A. Huang, and T. F. Knight, Jr., "A capability representation with embedded address and nearly-exact object bounds", MIT AI Lab, Tech. Rep. 5, April 2000, aries Project. [Online]. Available: http://www.ai.mit.edu/projects/aries/Documents/Memos/ARIES-05.pdf
7. M. N. Krohn, A. Yip, M. Z. Brodsky, N. Cliffer, M. F. Kaashoek, E. Kohler, and R. Morris, "Information flow control for standard OS abstractions", in Proceedings of the Symposium on Operating Systems Principles, ser. SOSP. ACM, October 2007, pp. 321-334. [Online]. Available: http://pdos.csail.mit.edu/?max/docs/flume.pdf
8. P. Efstathopoulos, M. Krohn, S. VanDeBogart, C. Frey, D. Ziegler, E. Kohler, D. Mazières, F. Kaashoek, and R. Morris, "Labels and event processes in the Asbestos operating system", in Proceedings of the Symposium on Operating Systems Principles, ser. SOSP. ACM, 2005, pp. 17-30. [Online]. Available: http://asbestos.cs.ucla.edu/pubs/asbestos-sosp05.pdf
9. D. Stefan, A. Russo, J. C. Mitchell, and D. Mazières, "Flexible dynamic information flow control in Haskell", in 4th Symposium on Haskell. ACM, 2011, pp. 95-106. [Online]. Available: http://www.scs.stanford.edu/?deian/pubs//stefan:2011:flexible-ext.pdf
10. C. Hriţcu, M. Greenberg, B. Karel, B. C. Pierce, and G. Morrisett, "All your IFCException are belong to us", in 34th IEEE Symposium on Security and Privacy. IEEE Computer Society Press, May 2013, pp. 3-17. [Online]. Available: http://www.crash-safe.org/node/23
11. A. C. Myers and B. Liskov, "Protecting privacy using the decentralized label model", Transactions On Software Engineering And Methodology (TOSEM), vol. 9, pp. 410-442, October 2000. [Online]. Available: http://doi.acm.org/10.1145/363516.363526
12. D. Volpano, G. Smith, and C. Irvine, "A sound type system for secure flow analysis", Journal of Computer Security, vol. 4, no. 3, pp. 167-187, 1996. [Online]. Available: http://citeseerx.ist.psu.edu/viewdoc/download?doi=10. 1.1.152.7374&rep=rep1&type=pdf
13. R. S. Nikhil, "Bluespec system verilog: efficient, correct rtl from high level specifications", in 2nd ACM & IEEE International Conference on Formal Methods and Models for Co-Design (MEMOCODE 2004), 23-25 June 2004, San Diego, California, USA, Proceedings. IEEE, 2004, pp. 69-70.
14. T. Jim, J. G. Morrisett, D. Grossman, M. W. Hicks, J. Cheney, and Y. Wang, "Cyclone: A safe dialect of c", in Proceedings of the General Track: 2002 USENIX Annual Technical Conference, June 10-15, 2002, Monterey, California, USA, C. S. Ellis, Ed. USENIX, 2002, pp. 275-288.
15. R. S. Fabry, "Capability-based addressing", Commun. ACM, vol. 17, no. 7, pp. 403-412, 1974.
16. J. Liedtke, "On micro-Kernel Construction", in 15th ACM Symposium on Operating Systems Principles, 1995, pp. 237-250.
17. K. Elphinstone, G. Heiser, and J. Liedtke, L4 Reference Manual: MIPS R4x00, Version 1.11, Kernel Version 79, School Comp. Sci. & Engin., University NSW, Sydney 2052, Australia, May 1999, available from http://www.disy.cse.unsw.edu.au/Softw./L4.
18. G. Klein, K. Elphinstone, G. Heiser, J. Andronick, D. Cock, P. Derrin, D. Elkaduwe, K. Engelhardt, R. Kolanski, M. Norrish, T. Sewell, H. Tuch, and S. Winwood, "seL4: Formal verification of an OS kernel", in Proceedings of the Symposium on Operating Systems Principles. ACM, 2009, pp. 207-220. [Online]. Available: http://ertos.nicta.com. au/publications/papers/Klein EHACDEEKNSTW 09.pdf
19. R. Virding, C. Wikström, and M. Williams, Concurrent programming in ERLANG (2nd ed.), J. Armstrong, Ed. Hertfordshire, UK, UK: Prentice Hall International (UK) Ltd., 1996.
20. The Coq Proof Assistant, 2012, version 8.4. [Online]. Available: http://coq.inria.fr/refman
21. D. E. Denning, "A lattice model of secure information flow", Communications of the ACM, vol. 19, pp. 236-243, May 1976. [Online]. Available: http://doi.acm.org/10.1145/360051.360056
22. A. Sabelfeld and A. Myers, "Language-based information-flow security", IEEE Journal on Selected Areas in Communications, vol. 21, no. 1, pp. 5-19, Jan. 2003. [Online]. Available: http://www.cs.cornell.edu/andru/ papers/jsac/sm-jsac03.pdf