Verifying Operating System Security
Edit Page
Report
Scan day: 02 February 2014 UTC
18
Virus safety - good
Description: A confined program is one unable to leak information to an unauthorized party or modify unauthorized resources, an essential feature of any secure component based system. A proof of correctness of EROS architecture for confinement. [ResearchIndex]
CiteSeerX — Verifying Operating System Security Verifying Operating System Security (1997) @TECHREPORT{Shapiro97verifyingoperating,     author = {J. S. Shapiro and S. Weber},     title = {Verifying Operating System Security},
Size: 235 chars
Contact Information
Email: —
Phone&Fax: —
Address: —
Extended: —
WEBSITE Info
Page title: | CiteSeerX — Verifying Operating System Security |
Keywords: | CiteSeerX, J. S. Shapiro, S. Weber |
Description: | CiteSeerX - Document Details (Isaac Councill, Lee Giles, Pradeep Teregowda): A confined program is one which is unable to leak information to an unauthorized party or modify unauthorized resources. Confinement is an essential feature of any secure component-based system. This paper presents a proof of correctness of the EROS operating system architecture with respect to confinement. We give a formal statement of the requirements, construct a model of the architecture's security policy and operational semantics, and show that the architecture enforces the confinement requirements if a small number of initial static checks on the confined subsystem are satisfied. The mechanism does not rely on the run-time values of user state or analysis of the programs' algorithm(s). Our verification methodology borrows heavily from techniques developed in the programming languages community. We view the operating system as a programming language whose operations are the kernel calls. This has the advantage that the security requirements of concern can be stated in forms analog... |
IP-address: | 130.203.136.95 |
WHOIS Info
NS | Name Servers: NS1.PSU.EDU 128.118.25.6 NS2.PSU.EDU 128.118.70.6 |
WHOIS | |
Date | activated: 14-Jul-1986 last updated: 22-May-2013 expires: 31-Jul-2014 |