Fast byte-granularity software fault isolation

14 years 1 months ago

Download www.sigops.org

Bugs in kernel extensions remain one of the main causes of poor operating system reliability despite proposed techniques that isolate extensions in separate protection domains to contain faults. We believe that previous fault isolation techniques are not widely used because they cannot isolate existing kernel extensions with low overhead on standard hardware. This is a hard problem because these extensions communicate with the kernel using a complex interface and they communicate frequently. We present BGI (Byte-Granularity Isolation), a new software fault isolation technique that addresses this problem. BGI uses eﬃcient byte-granularity memory protection to isolate kernel extensions in separate protection domains that share the same address space. BGI ensures type safety for kernel objects and it can detect common types of errors inside domains. Our results show that BGI is practical: it can isolate Windows drivers without requiring changes to the source code and it introduces a CP...

Miguel Castro, Manuel Costa, Jean-Philippe Martin,

Real-time Traffic

Isolate Existing Kernel | Kernel Extensions | Operating System | Separate Protection Domains | SOSP 2009 |

claim paper

Post Info
More Details (n/a)

Added	17 Mar 2010
Updated	17 Mar 2010
Type	Conference
Year	2009
Where	SOSP
Authors	Miguel Castro, Manuel Costa, Jean-Philippe Martin, Marcus Peinado, Periklis Akritidis, Austin Donnelly, Paul Barham, Richard Black

Comments (0)

Sciweavers

Fast byte-granularity software fault isolation

Isolate Existing Kernel | Kernel Extensions | Operating System | Separate Protection Domains | SOSP 2009 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers