Weiqing Sun, Zhenkai Liang, R. Sekar, V.N. Venkatakrishnan  Home/Search
Context
Related
| sunysb.edu/seclab/pubs/pape...ndss05.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: sunysb.edu/seclab/pubs/papers (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: In this paper, we present an approach for realizing a safe execution environment (SEE) that enables users to "try out" new software (or configuration changes to existing software) without the fear of damaging the system in any manner. A key property of our SEE is that it faithfully reproduces the behavior of applications, as if they were running natively on the underlying host operating system. This is accomplished via one-way isolation: processes running within the SEE are given read-access to ... (Update)
Active bibliography (related documents): More All
1.8: Isolated Program Execution: An Application Transparent .. - Liang.. (2003) (Correct)
0.6: Avfs: An On-Access Anti-Virus File System - Miretskiy, Das, Wright, Zadok (2004) (Correct)
0.5: Limiting Liability in a Federally Compliant File System - Zachary Peterson Randal (Correct)
System load high. Please wait...
Timeout. Please try your query later.
Similar documents based on text: More All
0.2: Model-Carrying Code: A Practical Approach for Safe .. - Sekar.. (2003) (Correct)
0.2: Automatic Synthesis of Filters to Discard Buffer Overflow .. - Liang, Sekar, DuVarney (2005) (Correct)
0.2: V-NetLab: A Cost-Eective Platform to Support - Course Projects In (Correct)
BibTeX entry: (Update)
@misc{ sun-oneway,
author = "Weiqing Sun and Zhenkai Liang and R. Sekar and V.N. Venkatakrishnan",
title = "One-way Isolation: An Effective Approach for Realizing Safe Execution Environments",
url = "citeseer.ist.psu.edu/sun05oneway.html" }
Citations (may not include all citations):175 A secure environment for untrusted helper applications: conf.. - Goldberg, Wagner et al. - 1996
153 A note on the confinement problem - Lampson - 1973 ACM DBLP
56 Postmark: A new file system benchmark (context) - Katcher - 1997
44 Venti: a new approach to archival storage - Quinlan, Dorward DBLP
42 The episode file system - Chutani, Anderson et al. - 1992
34 Synthesizing fast intrusion prevention /detection systems fr.. - Sekar, Uppuluri - 1999
28 Mapbox: Using parameterized behavior classes to confine appl.. - Acharya, Raje - 2000 ACM
26 Improving host security with system call policies - Provos - 2003
24 Secure execution of java applets using a remote playground - Malkhi, Reiter - 2000 ACM DBLP
21 Denali: Lightweight virtual machines for distributed and net.. - Whitaker, Shaw et al. - 2002
18 Extending file systems using stackable templates - Zadok, Badulescu et al. - 1999 DBLP
16 Undo for operators: Building an undoable e-mail store - Brown, Patterson - 2003 DBLP
14 A new dimension for the unix file system (context) - Korn, Krell - 1990 ACM DBLP
12 When virtual is better than real (context) - Chen, Nobl - 2001 ACM
10 A specification-based approach for building survivable syste.. - Sekar, Cai et al. - 1998
10 Elephant: The file system that never forgets - Santry, Feeley et al. - 1999 DBLP
8 iams, and E. Zadok. Am-utils user manual (context) - Pendry, Will - 2003
8 Sandboxing applications - Prevelakis, Spinellis - 2001 ACM DBLP
7 Application-level isolation to cope with malicious database .. - Jajodia, Liu et al. - 1998 ACM DBLP
7 Intrusion DetectionPrevention Using Behavior Specification (context) - Detection, Behavior et al. - 2003
6 Safe virtual execution using software dynamic translation (context) - Scott, Davidson - 2002 ACM
6 dfs: A time-oriented file server (context) - Roome - 1992
6 Metadata efficiency in a comprehensive versioning file syste.. - Soules, Goodson et al. - 2002
5 and evaluation of repairable file service (context) - Zhu, Chiueh et al. - 2003
5 Intrusion confinement by isolation in information systems - Liu, Jajodia et al. - 1999 ACM DBLP
3 Chakravyuha: A sandbox operating system for the controlled e.. (context) - Dan, Mohindra et al. - 1997
3 Spout: A transparent distributed execution engine for java a.. - Chiueh, Sankaran et al. - 2000 DBLP
2 on and R. Burns. Ext3cow: The design, implementation, and an.. (context) - Peters - 2003
2 A versatile and user-oriented versioning file system (context) - Muniswamy-Reddy, Wright et al. - 2004
1 SunOS Reference Manual (context) - system - 1990
1 Unix man page (context) - file
1 a and T. Chiueh. Design, implementation, and evaluation of a.. (context) - Pilani - 2003
1 a malicious code analyzer (context) - Zalewski
1 Isolated program execution: An application transparent appro.. - Liang, Venkatakrishnan et al. - 2003
http://www.canonical.org/picturepages/
http://www.mindcraft.com/webstone
http://roc.cs.berkeley.edu
http://linux.iconet.com.br/system/preview/8622.html
http://www.ecsl.cs.sunysb.edu/tech
Documents on the same site (http://seclab.cs.sunysb.edu/seclab/pubs/papers.htm): More
A High-Performance Network Intrusion Detection System - Sekar, Guang, Verma, Shanbhag (1999) (Correct)
Building Survivable Systems: An Integrated.. - Bowen, Chee.. (2000) (Correct)
Automatic Generation of Buffer Overflow Attack Signatures: An.. - Liang, Sekar (2005) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC