See this document in CiteSeerX!

Secure Untrusted Binaries  Provably!  (Make Corrections)  
Simon Winwood and Manuel M. T. Chakravarty University of New South Wales...



  Home/Search   Context   Related

 
View or download:
nicta.com.au/publi...akravarty_05.ps.gz
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  nicta.com.au/publications/ (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: A standard method for securing untrusted code is code rewriting, whereby operations that might compromise a safety policy are secured by additional dynamic checks. In this paper, we propose a novel approach to sandboxing that is based on a combination of code rewriting and hardware-based memory protection. In contrast to previous work, we perform rewriting on raw binary code and provide a machine-checkable proof of safety that includes the interaction of the untrusted binary with the... (Update)

Active bibliography (related documents):   More   All
0.5:   Integrating Segmentation and Paging Protection for.. - Chiueh.. (1999)   (Correct)
0.1:   SELF: a Transparent Security Extension for ELF Binaries - DuVarney, Bhatkar.. (2003)   (Correct)
0.0:   A Flexible and Dynamic Access Control Policy Framework for an.. - Hess, Schäfer (2003)   (Correct)

Similar documents based on text:
0.0:   Unknown -   (Correct)

BibTeX entry:   (Update)

@misc{ and-secure,
  author = "Simon Winwood And",
  title = "Secure Untrusted Binaries  Provably!",
  url = "citeseer.ist.psu.edu/744198.html" }
Citations (may not include all citations):
155   Alpha architecture reference manual (context) - Sites, Witek - 1998
81   SASI enforcement of security policies: A retrospective - Schneider - 1999
75   Flexible policy-directed code safety - Evans, Twyman - 1999
74   untrusted agents using proof-carrying code (context) - Necula, Lee - 1998
44   cient software-based fault isolation (context) - Wahbe, Lucco et al. - 1993
19   Vulcan: Binary transformation in a distributed environment - Srivastava, Edwards et al. - 2001
13   still the foundation for extensibility (context) - Liedtke, Elphinstone et al. - 1997
13   A binary rewriting defense against stack based buer overow.. (context) - Prasad, cker - 2003
12   Information and System Security (context) - Schneider - 2000
2   MiSFIT: Constructing safe extensible systems (context) - Small, Seltzer - 1998
1   able binary sandboxing for a CISC architecture (context) - McCamant, Morrisett - 2005
1   Technical Report MSR-TR (context) - Abadi, Budiu et al. - 2005
1   A theory of secure control ow (context) - Abadi, Budiu et al. - 2005

Documents on the same site (http://www.ertos.nicta.com.au/publications/):   More
The SawMill Framework for Virtual Memory Diversity - Aron, Park, Jaeger.. (2001)   (Correct)
Improving Dynamic Update for Operating Systems - Andrew Baumann University   (Correct)
Multiple Page Size Support in the Linux Kernel - Winwood, Shuf, Franke (2002)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC