PRISM: Program Replication and Integration for Seamless MILS

“…Historically, concern about timing channels was confined to high-assurance systems: certified separation kernels are required to limit their bandwidth [IAD] and the NSA provides guidance on how to avoid cache channels for systems built on secure realtime OSes [NSA]. While they remain a concern for modern highassurance systems [Owen et al, 2011], timing channels are now recognised as a threat to co-tenant cloud computing [Ristenpart et al, 2009], in which mutually distrusting tenants pay for access to common computing infrastructure. Hence timing channel mitigation has again become a hot topic in computer security [Kim et al, 2012;Stefan et al, 2013;Zhang and Reiter, 2013].…”

The Last Mile

“…Historically, concern about timing channels was confined to high-assurance systems: certified separation kernels are required to limit their bandwidth [IAD] and the NSA provides guidance on how to avoid cache channels for systems built on secure realtime OSes [NSA]. While they remain a concern for modern highassurance systems [Owen et al, 2011], timing channels are now recognised as a threat to co-tenant cloud computing [Ristenpart et al, 2009], in which mutually distrusting tenants pay for access to common computing infrastructure. Hence timing channel mitigation has again become a hot topic in computer security [Kim et al, 2012;Stefan et al, 2013;Zhang and Reiter, 2013].…”

The Last Mile

The cross domain desktop compositor

Information Associations for Multi-Domain Applications