Software Fault Isolation with Api Integrity and Multi-Principal Modules

Software Fault Isolation with Api Integrity and Multi-Principal Modules

The security of many applications relies on the kernel being secure, but history suggests that kernel vulnerabilities are routinely discovered and exploited. In particular, exploitable vulnerabilities in kernel modules are common. This paper proposes LXFI, a system which isolates kernel modules from...

Full description

Bibliographic Details
Main Authors: Mao, Yandong (Contributor), Chen, Haogang (Contributor), Zhou, Dong (Author), Wang, Xi (Contributor), Zeldovich, Nickolai (Contributor), Kaashoek, M. Frans (Contributor)
Other Authors: Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory (Contributor), Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science (Contributor)
Format: Article
Language:English
Published: Association for Computing Machinery (ACM), 2012-09-07T19:00:54Z.
Subjects:
Article
Online Access:Get fulltext

Internet

Get fulltext

Similar Items