Raymond Lu scite author profile

Raymond Lu

5Publications

21Citation Statements Received

21Citation Statements Given

How they've been cited

How they cite others

Affiliations

Carnegie Mellon University

Publications

Order By: Most citations

Using kernel hypervisors to secure applications

Mitchem¹,

Lu²,

O’Brien³

View full text Add to dashboard Cite

This paper describes an approach for selectively controlling COTS components to provide robustness and security. Using the concept of a loadable module, "kernel hypewisors" have been implemented on a Linux kernel. These kernel hypervisors provide unbypassable security wrappers for application speciJic security requirements and can be used to provide replication services as well.A framework has been developed based on a master kernel hypewisol; whose job is to coordinate installation and removal of individual client kernel hypervisors and to provide a means for management of these clients. The framework allows client kernel hypervisors to be stacked so that a variety of application specific policies can be implemented, each by means of its own kernel hypervisor The hypewisors run in the kernel, but since they are loadable modules, they do not require that the kernel be modiJied.Kernel hypervisors have a number of potential applications, including protecting user systems from malicious active content downloaded via a Web browser and wrapping servers and jirewall services for limiting possible compromises. I

show abstract

Kernel Loadable Wrappers for Information Assurance

O’Brien¹,

Mitchem²,

Lu³

et al. 2002

View full text Add to dashboard Cite

Public reporting burden for this collection of information is estimated to average 1 hour per response, including the time for reviewing instructions, searching existing data sources, gathering and maintaining the data needed, and completing and reviewing this collection of information. Send comments regarding this burden estimate or any other aspect of this collection of information, including suggestions for reducing this burden to

show abstract

Linux kernel loadable wrappers

Mitchem¹,

Lu²,

O’Brien³

et al.

View full text Add to dashboard Cite

Creating and visualizing fuzzy document classification

Gelernter

Cao

et al. 2009

View full text Add to dashboard Cite

Abstract-Fuzzy classification ranks items by degree rather than assigning them either within or without of a category. The novelty of our work is in integrating fuzzy classification algorithms with an interface to visualize fuzzy results. An advantage of our algorithms' 'fuzziness' is that it provides additional information per retrieved result that helps in deciding whether to drill down to the document or skip it. An advantage of our interface is that it allows users to visualize those differences quickly. We have created a prototype that allows the retrieval of journal articles by content word or by ontologysupported browse categories that can be selected independently or in tandem. Journal articles in our digital library pertain to paleontology, but techniques demonstrated viable in indexing and ranking paleo-journal literature should apply to other knowledge domains with little modification.

show abstract

Hypervisors for Security and Robustness

Mitchum¹,

Larson²,

Lu³

et al. 1999

View full text Add to dashboard Cite

Public reporting bunten for this collection of information is estimated to average 1 hour per response, including the time for reviewing instructions. Marching existing data sources, gathering and maintaining the data needed, and completing and reviewing the collection of information. Sand comments regarding this burden estimate or any other aspect of this collection of information, including suggestions for reducing this burden, Approved for public release; distribution unlimited. 12b. DISTRIBUTION CODE ABSTRACT (Maximum 200 words)This is the final report for the Hypervisors for Security and Robustness (Kernel Hypervisors) program. It contains a description of the kernel hypervisor approach that was developed on the program for selectively controlling COTS components to provide robustness and security. Using the concept of a loadable module, kernel hypervisors were implemented on a Linux kernel. These kernel hypervisors provide unbypassable security wrappers for application specific security requirements and can also be used to provide replication services. Kernel hypervisors have a number of potential applications, including protecting user systems from malicious active content downloaded via a Web browser and wrapping servers and firewall services for limiting possible compromises.This report also includes a summary of the results of the performance testing and composability analysis mat was done on lie program. It concludes with a discussion of lessons learned and open issues. SUBJECT TERMS AbstractThis is the final report for the Hypervisors for Security and Robustness (Kernel Hypervisors) program. It contains a description of the kernel hypervisor approach that was developed on the program for selectively controlling COTS components to provide robustness and security. Using the concept of a loadable module, kernel hypervisors were implemented on a Linux kernel. These kernel hypervisors provide unbypassable security wrappers for application specific security requirements and can also be used to provide replication services. Kernel hypervisors have a number of potential applications, including protecting user systems from malicious active content downloaded via a Web browser and wrapping servers and firewall services for limiting possible compromises.This report also includes a summary of the results of the performance testing and composability analysis that was done on the program. It concludes with a discussion of lessons learned and open issues.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Raymond Lu

Using kernel hypervisors to secure applications

Kernel Loadable Wrappers for Information Assurance

Linux kernel loadable wrappers

Creating and visualizing fuzzy document classification

Hypervisors for Security and Robustness

Contact Info

Product

Resources

About