2007
DOI: 10.1145/1272998.1273032
|View full text |Cite
|
Sign up to set email alerts
|

Sealing OS processes to improve dependability and safety

Abstract: In most modern operating systems, a process is a hardware-protected abstraction for isolating code and data. This protection, however, is selective. Many common mechanisms---dynamic code loading, run-time code generation, shared memory, and intrusive system APIs---make the barrier between processes very permeable. This paper argues that this traditional open process architecture exacerbates the dependability and security weaknesses of modern systems. As… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
13
0

Year Published

2007
2007
2018
2018

Publication Types

Select...
3
3
2

Relationship

1
7

Authors

Journals

citations
Cited by 24 publications
(13 citation statements)
references
References 33 publications
0
13
0
Order By: Relevance
“…The Multitasking Virtual machine [6], Android [20], Singularity [8,13] and KaffeOS [1] are examples of application frameworks where processes are fully isolated. Isolation is either achieved at the operating system level by using distinct address spaces or at the process level by using a single address space, but by preventing process to share objects.…”
Section: Related Workmentioning
confidence: 99%
“…The Multitasking Virtual machine [6], Android [20], Singularity [8,13] and KaffeOS [1] are examples of application frameworks where processes are fully isolated. Isolation is either achieved at the operating system level by using distinct address spaces or at the process level by using a single address space, but by preventing process to share objects.…”
Section: Related Workmentioning
confidence: 99%
“…Mach kernel [27] also provides a micro-kernel architecture and flexible multiprocessing support, which can be exploited for failure resilience and isolation. Singularity [8] proposes multiprocessing support in particular to improve dependability and safety by introducing the concept of sealed process architecture. This architecture limits the scopes of processes and their capabilities with respect to memory alteration for better isolation.…”
Section: Related Workmentioning
confidence: 99%
“…Isolation is usually supported by either the operating system (e.g. process isolation [8]) or a middleware (e.g. encapsulation of Enterprise Java Bean objects) and the existing design (i.e.…”
Section: Introductionmentioning
confidence: 99%
“…Many cases in which a computation must execute under more than one identity can be implemented in our design by spawning multiple processes. The reasonably fast process creation in Singularity [18] makes such an approach practical. Nonetheless, Singularity also provides a restricted mechanism for delegating authority that is then associated with a specific channel.…”
Section: Principalsmentioning
confidence: 99%