Add to ORKGthesisOperating system (OS) kernel extensions, particularly device drivers, are one of the primary sources of vulnerabilities in commodity OS kernels. Vulnerabilities in driver code are often exploited by attackers, leading to attacks like privilege escalation, denial-of-service, and arbitrary code execution. Today, kernel extensions are fully trusted and operate within the core kernel without any form of isolation. But history suggests that this trust is often misplaced, emphasizing a need for some isolation in the kernel. We develop a new framework for isolating device drivers in the Linux kernel. Our work builds on three fundamental principles: (1) strong isolation of the driver code; (2) reuse of existing driver while making no or mini...
Device drivers are the single largest contributor to operating-system kernel code with over 5 millio...
Device drivers are becoming the most significant part of operating system kernels. Several studies h...
Arada Locomate On-Board Unit is a vehicle-to-vehicle communication device that supports the WAVE pro...
thesisMany of the operating system kernels we use today are monolithic. They consist of numerous fil...
URL to paper from conference siteThis paper presents SUD, a system for running existing Linux devic...
In today’s operating systems, drivers are linked with the kernel where handling pointers and perform...
Device drivers on commodity operating systems execute with kernel privilege and have unfettered acce...
This paper presents SUD, a system for running existing Linux device drivers as untrusted user-space ...
Device drivers on commodity operating systems execute with kernel privilege and have unfettered acce...
General-purpose kernels sometimes fail to provide specialized services that may be required by appli...
Operating System-level Virtualization is virtualization technology based on running multiple isolate...
In most of today’s operating system architectures, device drivers are tightly coupled with other ker...
Today’s operating systems are large, complex, and plagued with vulnerabilities that allow perpetrato...
The vast majority of hosts on the Internet, including mobile clients, are running one of three commo...
Modern operating systems are often the target of attacks that exploit vulnerabilities to escalate th...
Device drivers are the single largest contributor to operating-system kernel code with over 5 millio...
Device drivers are becoming the most significant part of operating system kernels. Several studies h...
Arada Locomate On-Board Unit is a vehicle-to-vehicle communication device that supports the WAVE pro...
thesisMany of the operating system kernels we use today are monolithic. They consist of numerous fil...
URL to paper from conference siteThis paper presents SUD, a system for running existing Linux devic...
In today’s operating systems, drivers are linked with the kernel where handling pointers and perform...
Device drivers on commodity operating systems execute with kernel privilege and have unfettered acce...
This paper presents SUD, a system for running existing Linux device drivers as untrusted user-space ...
Device drivers on commodity operating systems execute with kernel privilege and have unfettered acce...
General-purpose kernels sometimes fail to provide specialized services that may be required by appli...
Operating System-level Virtualization is virtualization technology based on running multiple isolate...
In most of today’s operating system architectures, device drivers are tightly coupled with other ker...
Today’s operating systems are large, complex, and plagued with vulnerabilities that allow perpetrato...
The vast majority of hosts on the Internet, including mobile clients, are running one of three commo...
Modern operating systems are often the target of attacks that exploit vulnerabilities to escalate th...
Device drivers are the single largest contributor to operating-system kernel code with over 5 millio...
Device drivers are becoming the most significant part of operating system kernels. Several studies h...
Arada Locomate On-Board Unit is a vehicle-to-vehicle communication device that supports the WAVE pro...