Download presentation

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
Document related concepts

CP/M wikipedia , lookup

Unix security wikipedia , lookup

Distributed operating system wikipedia , lookup

Security-focused operating system wikipedia , lookup

Transcript 
Nexus: An Operating System for
Trustworthy Computing
Alan Shieh
Emin Gün Sirer
Dan Williams
Fred B. Schneider
Department of Computer Science
Cornell University
Trustworthy Computing
Emerging hardware for trustworthy
computing
Existing systems do not provide required
execution environment
Nexus: A New OS
Architecture for trustworthy computing
Small TCB
Software: User-level drivers and services
Hardware: Secondary storage not trusted
Fine-grain components
Strong isolation
New abstractions
New abstractions
Active attestation with descriptive,
unforgeable names
Used for local and remote access control
Used for resource commitment
Secure memory regions with mandatory
access control
Used to implement trustworthy services
Naming via active attestation
Exposes properties of process
Result of analysis
Reference monitors
Execution environment
Captures run-time properties
Routing: “k packets have been forwarded”
P2P: “Blocks {b0 , ..., bk } queued for Tx”
Anti-spam e-mail:
“Human typed in message”
Resource commitment:
“Program scheduled for k quanta”
Secure memory regions
Strong storage guarantees
Integrity
Confidentiality
Persistence
Access control using active attestation
Used to implement powerful user-level
services
Security automata
Linear capability manager
Summary
Working system with applications:
Capabilities-based media player
Spam-proof e-mail system
Tamper-evident system log
Attested MACEDON application
Related documents
UAE Online Child Safety Awareness Campaign
UAE Online Child Safety Awareness Campaign
Internet Safety Lesson - High Point University
Internet Safety Lesson - High Point University
RADCAB Short
RADCAB Short
The World of Advertising
The World of Advertising
Professionalism in the Workplace
Professionalism in the Workplace
sstt122 Test 2. Memorandum
sstt122 Test 2. Memorandum
Plant and animal cells card sort. - EAL Nexus
Plant and animal cells card sort. - EAL Nexus
Common Persuasive Techniques
Common Persuasive Techniques
COP4020 Homework Assignment 2
COP4020 Homework Assignment 2
PowerPoint 10 - Asheville church of Christ
PowerPoint 10 - Asheville church of Christ
Building the Way Forward
Building the Way Forward
Ethics & Codes of Conduct
Ethics & Codes of Conduct
PRS203_Wilson
PRS203_Wilson
Although ESI is currently developing a temporary
Although ESI is currently developing a temporary
slides (ppt)
slides (ppt)
slides [pdf]
slides [pdf]
A Technical Introduction to NGSCB Security Summit East 2003
A Technical Introduction to NGSCB Security Summit East 2003
Terra: A Virtual-Machine Based Platform for Trusted Computing
Terra: A Virtual-Machine Based Platform for Trusted Computing