VirtuOS

Nikolaev, Ruslan; Back, Godmar

doi:10.1145/2517349.2522719

Cited by 45 publications

(6 citation statements)

References 36 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…VM-based Backend. Many works use virtualization to support isolation within a kernel [33,40,41,56]. VM-based isolation provides strong security guarantees and is widely supported, at the cost of higher overhead.…”

Section: Implementation Prototypementioning

confidence: 99%

FlexOS

Lefeuvre

Bădoiu

Teodorescu

et al. 2021

Proceedings of the Workshop on Hot Topics in Operating Systems

View full text Add to dashboard Cite

OS design is traditionally heavily intertwined with protection mechanisms. OSes statically commit to one or a combination of (1) hardware isolation, (2) runtime checking, and (3) software verification early at design time. Changes after deployment require major refactoring; as such, they are rare and costly. In this paper, we argue that this strategy is at odds with recent hardware and software trends: protections break (Meltdown), hardware becomes heterogeneous (Memory Protection Keys, CHERI), and multiple mechanisms can now be used for the same task (software hardening, verification, HW isolation, etc). In short, the choice of isolation strategy and primitives should be postponed to deployment time.We present FlexOS, a novel, modular OS design whose compartmentalization and protection profile can seamlessly be tailored towards a specific application or use-case at build time. FlexOS offers a language to describe components' security needs/behavior, and to automatically derive from it a compartmentalization strategy. We implement an early prototype of FlexOS that can automatically generate a large array of different OSes implementing different security strategies. CCS Concepts• Software and its engineering → Operating systems; • Security and privacy → Operating systems security.

show abstract

Section: Implementation Prototypementioning

confidence: 99%

FlexOS

Lefeuvre

Bădoiu

Teodorescu

et al. 2021

Proceedings of the Workshop on Hot Topics in Operating Systems

View full text Add to dashboard Cite

show abstract

“…Device Virtualization and Passthrough. During the past decade, advances in device virtualization have decreased the trusted code base for isolated I/O channels, gradually evolving from the monolithic hypervisors/VMMs to hypervisors with privileged device management domains [11], then to hypervisors with disengaged privileged domains [18], and finally to hypervisors with isolated driver domains [22,51]. However, applications in their guest domains still communicate with virtualized devices via the untrusted guest OS on which they run, which still implies that a huge code base has to be trusted for on-demand, isolated I/O.…”

Section: A I/o Isolation Systemsmentioning

confidence: 99%

“…Several approaches [12,23,42,43,51,63,68] exist to isolate device drivers from the OS kernel, and/or move them to user-space, primarily for the purpose of improving driver reliability and fault isolation. Swift et al propose using hardware memory protection domains to isolate the drivers of a monolithic kernel [63].…”

Section: Device Driver Isolation and Decompositionmentioning

confidence: 99%

Dancing with Giants: Wimpy Kernels for On-Demand Isolated I/O

Zhou

Gligor

2014

2014 IEEE Symposium on Security and Privacy

View full text Add to dashboard Cite

To be trustworthy, security-sensitive applications must be formally verified and hence small and simple; i.e., wimpy. Thus, they cannot include a variety of basic services available only in large and untrustworthy commodity systems; i.e., in giants. Hence, wimps must securely compose with giants to survive on commodity systems; i.e., rely on giants' services but only after efficiently verifying their results. This paper presents a security architecture based on a wimpy kernel that provides on-demand isolated I/O channels for wimp applications, without bloating the underlying trusted computing base. The size and complexity of the wimpy kernel are minimized by safely outsourcing I/O subsystem functions to an untrusted commodity operating system and exporting driver and I/O subsystem code to wimp applications. Using the USB subsystem as a case study, this paper illustrates the dramatic reduction of wimpy-kernel size and complexity; e.g., over 99% of the USB code base is removed. Performance measurements indicate that the wimpykernel architecture exhibits the desired execution efficiency.

show abstract

“…Un DVS ofrece entornos de ejecución virtuales distribuidos en los cuales se permite ejecutar múltiples instancias aisladas de Sistemas Operativos Virtuales (VOS) [2]. Un VOS ofrece abstracciones y servicios a las aplicaciones de usuario, pero no gestiona hardware físico, sino dispositivos virtuales proporcionados por un Sistema Operativo (OS) real.…”

Section: Introductionunclassified

Localización y seguimiento de servicios replicados en un sistema de virtualización distribuido

Pessolani¹,

Harispe²,

Aguirre³

2020

ReDDI

View full text Add to dashboard Cite

Las aplicaciones para ejecución en la nube suelen factorizarse en múltiples componentes localizados en diferentes computadores físicos o virtuales. Para alcanzar los niveles de disponibilidad, escalabilidad y robustez que éstas requieren, deben realizarse configuraciones más complejas y costosas de implementar, operar y mantener.Una forma de resolver este problema es utilizando un Sistema de Virtualización Distribuido (DVS) que provee un mecanismo para comunicar entre sí los componentes de la aplicación en forma transparente a su localización, ocultando los problemas y complejidades añadidos por su ejecución distribuida.

show abstract

VirtuOS

Cited by 45 publications

References 36 publications

FlexOS

FlexOS

Dancing with Giants: Wimpy Kernels for On-Demand Isolated I/O

Localización y seguimiento de servicios replicados en un sistema de virtualización distribuido

Contact Info

Product

Resources

About