VMware Academic Program
Committed to strengthening VMware’s relationship with the academic and research communities.
Home » Academic » Publications » Towards Application Security on Untrusted Operating Systems

Towards Application Security on Untrusted Operating Systems

Download PDF

Towards Application Security on Untrusted Operating Systems

USENIX Workshop on Hot Topics in Security (HotSec) • July 2008

Abstract

Complexity in commodity operating systems makes compromises inevitable. Consequently, a great deal of work has examined how to protect security-critical portions of applications from the OS through mechanisms such as microkernels, virtual machine monitors, and new processor architectures. Unfortunately, most work has focused on CPU and memory isolation and neglected OS semantics. Thus, while much is known about how to prevent OS and application processes from modifying each other, far less is understood about how different OS components can undermine application security if they turn malicious. We consider this problem in the context of our work on Overshadow, a virtual-machine-based system for retrofitting protection in commodity operating systems.

Authors

Tal Garfinkel (VMware), Dan Ports (VMware/MIT)

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Publications

VMware employees and staff produce numerous papers and publications. Browse through the collection to find papers on a variety of topics.

VMware Office of the CTO

VMware Communities Roundtable Podcast

Hear VMware's own Dana Nourie and Andre Leibovici discuss the Flings process and the latest from VMware Labs!

Download episode