G. Candea. Flexible and efficient sharing of protected abstractions. Master's thesis, Massachusetts Institute of Technology, May 1998.  Home/Search   Document Details and Download   Summary   Related Articles

....process linked with a library cannot trust other processes to exhibit similar behaviors. Because exokernel applications are not trusted, providing protected access to operating system abstractions become important. While placing abstractions in a privileged domain (e.g. inside a protected method [12] or a server) provides protection, it reduces extensibility and performance. Instead, an exokernel offers two mechanisms for implementing system abstractions in an unprivileged yet safe fashion. One, exokernel requires hierarchically named capabilities be specified on each system call. In order to ....

....Sometimes, however, shared memory cannot be used. When application semantics require strict invariants to be preserved, shared resources are often placed in privileged domains. Forcing processes to use these domains can be done by implementing the domains as IPC servers, protected methods [12], or downloadable kernel modules [8] For example, when processes share a file system that requires file modification times be accurate, disk operations must be guaranteed to modify file access time. Processes sharing this file system must either have mutual trust in each other, or share the file ....

[Article contains additional citation context not shown here]

G. Candea. Flexible and efficient sharing of protected abstractions. Master's thesis, Massachusetts Institute of Technology, May 1998.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC