safe kernel extensions without run-time checking15712/papers/necula96.pdfgeorge c. necula and peter...
Post on 05-Mar-2020
2 Views
Preview:
TRANSCRIPT
The following paper was originally published in theProceedings of the USENIX 2nd Symposium onOperating Systems Design and Implementation
Seattle, Washington, October 1996
For more information about USENIX Association contact:1. Phone: 510 528-86492. FAX: 510 548-57383. Email: office@usenix.org4. WWW URL: http://www.usenix.org
Safe Kernel Extensions Without Run-Time Checking
George C. Necula and Peter LeeCarnegie Mellon University
CPU
CODE PRODUCERUSER PROCESSUNTRUSTED CLIENT
CODE CONSUMEROS KERNELNETWORK SERVER
SAFETYPOLICY
PROOFENABLE VALIDATION
SOURCE PROGRAM
COMPILATION&
CODE
SAFETYBINARY
SCC
NATIVE
CERTIFICATION
PROOF
2.0
1.5
PCC
1.0
0.5
Filter 1 Filter 2 Filter 3 Filter 4
us
0.78
1.92
0.11 0.08
1.46
0.18 0.150.24
0.170.23
0.17
1.71
0.20 0.250.31 0.33
BPF
SFIM3-VIEW
top related