R. Grimm and B.N. Bershad. Security for extensible systems. In Proceedings of the Sixth Workshop on Hot Topics in Operating Systems (HotOS), pages 62--66, 1997.  Home/Search   Document Details and Download   Summary   Related Articles   Check

.... diversifying and randomizing software on individual systems to increase their resilience to attack [FSA97] Grimm and Bershad propose using the ideas of levels of trust and nested categories of objects from mandatory access control as a foundation for security in extensible kernel systems [GB97] Myers and Liskov present a mandatory access control model for untrusted code. This allows users to share information with an untrusted program, but control how that information is relayed to others. The unique element of their work is that it is decentralized: users can declassify information, ....

R. Grimm and B.N. Bershad. Security for extensible systems. In Proceedings of the Sixth Workshop on Hot Topics in Operating Systems (HotOS), pages 62--66, 1997.

....7. We conclude with design choices, implications for genericity, and applications to software engineering. 2. PROGRAMMING LANGUAGE SECURITY Security is turning into a software issue as the mechanisms used to implement security policies are cheaper and more exible in software than in hardware [8, 9, 10]. Security is often discussed in terms of principals, objects, protection domains and security policies. We brie y introduce these terms (see Gollman [11] for more complete de nitions) Principals are the entities whose 4 J. VITEK AND B. BOKOWKSI actions must be controlled. Principals invoke ....

Grimm R, Bershad BN. Security for extensible systems. Proceedings of 6th Workshop on Hot Topics in Operating Sytems, 1997; 62-66.

....with additional services. This is one level of system extensibility. True system extensibility allows new extensions to build upon existing services, and to be invoked via existing interfaces. It is the combination of these two mechanisms that gives extensible systems their flexibility and power [11]. Sections 3.4 and 3.5 describe how these operations are provided by the Mungi component model, and identify their associated protection issues. 3.4. Forwarding and Aggregation Forwarding (also known as component composition) is a simple model for reusing existing components, that avoids the ....

R. Grimm and B. Bershad. Security for extensible systems. In Proceedings of the 6th Workshop on Hot Topics in Operating Systems (HotOS), pages 62--66, Cape Cod, MA, USA, May 1997.

....with design choices, implications for genericity, and applications to software engineering. 2 Security in Programming Languages Security is increasingly turning into a software issue as the mechanisms used to implement security policies are cheaper and more flexible in software than in hardware [6, 14, 25]. In a computer system, principals are the entities whose actions must be controlled. Principals invoke operations on objects. 1 The context within which a principal executes is called a protection domain. Access to resources within the same protection domain is not checked, while cross domain ....

R. Grimm and B. N. Bershad. Security for extensible systems. In Proceedings of 6th Workshop on Hot Topics in Operating Sytems, pages 62--66, Cape Cod, Massachusetts, May 1997.

....implications on genericity, and bene ts that con ned types o er for other areas than security. 2 Security in Programming Languages Security is increasingly becoming a software issue as the mechanisms used to implement security policies are cheaper and more exible in software than in hardware [6, 14, 25]. In a computer system, principals are the entities whose actions must be controlled. Principals invoke operations on objects. 1 The context within which a principal executes is called a protection domain. Access to resources within the same protection domain is not checked, while cross domain ....

R. Grimm and B. N. Bershad. Security for extensible systems. In Proceedings of 6th Workshop on Hot Topics in Operating Sytems, pages 62-66, Cape Cod, Massachusetts, May 1997.

....implications on genericity, and bene ts that con ned types o er for other areas than security. 2 Security in Programming Languages Security is increasingly becoming a software issue as the mechanisms used to implement security policies are cheaper and more exible in software than in hardware [6, 14, 25]. In a computer system, principals are the entities whose actions must be controlled. Principals invoke operations on objects. 1 The context within which a principal executes is called a protection domain. Access to resources within the same protection domain is not checked, while cross domain ....

R. Grimm and B. N. Bershad. Security for extensible systems. In Proceedings of 6th Workshop on Hot Topics in Operating Sytems, pages 62-66, Cape Cod, Massachusetts, May 1997.

....on genericity, and benefits that confined types offer for other areas than security. 2 Security in Programming Languages Security is increasingly becoming a software issue as the mechanisms used to implement security policies are cheaper and more flexible in software than in hardware [6, 14, 25]. In a computer system, principals are the entities whose actions must be controlled. Principals invoke operations on objects. 1 The context within which a principal executes is called a protection domain. Access to resources within the same protection domain is not checked, while cross domain ....

R. Grimm and B. N. Bershad. Security for extensible systems. In Proceedings of 6th Workshop on Hot Topics in Operating Sytems, pages 62--66, Cape Cod, Massachusetts, May 1997.

....systems and mostly relied on hardware enforced address space boundaries. In this approach, objects are divided between address spaces, with no guarantees of protection within a domain. In the last few years there has been an increasing number of attempts at providing protection in software [16, 6, 26] as the cost of crossing protection domains is significantly lower. Programming language based protection goes a step further and uses language semantics, such as type systems, and language implementation technology, such as compilers and run time systems to enforce security. Programming language ....

R. Grimm and B. N. Bershad. Security for extensible systems. In Proceedings of 6th Workshop on Hot Topics in Operating Sytems, pages 62--66, Cape Cod, Massachusetts, May 1997.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC