Upload File

user-level sandboxing with fuse brandon rich andrew blaich university of notre dame cse 60641

  • Home
  • Documents
  • User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641
19
User-Level Sandboxing User-Level Sandboxing with FUSE with FUSE Brandon Rich Brandon Rich Andrew Blaich Andrew Blaich University of Notre Dame CSE 60641

Upload: nelson-knoop

Post on 14-Dec-2015

214 views

Category:

Documents


0 download

Report

Tags:

TRANSCRIPT

Page 1: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

User-Level Sandboxing with User-Level Sandboxing with FUSEFUSE

User-Level Sandboxing with User-Level Sandboxing with FUSEFUSE

Brandon RichBrandon RichAndrew BlaichAndrew Blaich

Brandon RichBrandon RichAndrew BlaichAndrew Blaich

University of Notre DameCSE 60641

Page 2: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

ProblemProblemProblemProblem

Protect the file system from abuse. Guiding Principles:

Transparency Isolation User input

Protect the file system from abuse. Guiding Principles:

Transparency Isolation User input

Page 3: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

SolutionSolutionSolutionSolution

System Call Interposition Intercept Analyze Re-route and log activity Return

Post-execution commit Using log and execution cache

System Call Interposition Intercept Analyze Re-route and log activity Return

Post-execution commit Using log and execution cache

Page 4: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

ComponentsComponentsComponentsComponents

FUSE Syscall interposition (free) Logger Sandbox

Whole-file copy

Virtual File List Commit process

Uses log and .sandbox files

FUSE Syscall interposition (free) Logger Sandbox

Whole-file copy

Virtual File List Commit process

Uses log and .sandbox files

Page 5: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

USER-Space

Kernel

FUSE

System-Call

/tmp file1.txt file1.txt.sandbox file2.doc

OpenReadWriteClose

log call in: log.log

3 Cases:

1) Writing a new file2) Writing an existing file3) Reading

Page 6: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Virtual File ListVirtual File List

Page 7: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Sandboxing WritesSandboxing Writes

Page 8: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Sandboxing WritesSandboxing Writes

Page 9: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Sandboxing DeletesSandboxing Deletes

No deletes ever take place VFL entry can be designated “deleted” Version numbers keep track of future

generations of a file

No deletes ever take place VFL entry can be designated “deleted” Version numbers keep track of future

generations of a file

Page 10: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Hiding Sandbox FilesHiding Sandbox Files

Page 11: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

LoggingLogging

Page 12: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

CommitterCommitter

Page 13: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Performance EvaluationPerformance Evaluation

Tests Andrew Benchmark Chirp Benchmark Custom Benchmarks

Three Environments Unmodified ext3 file system “Clean” FUSE Sandboxing FUSE

Tests Andrew Benchmark Chirp Benchmark Custom Benchmarks

Three Environments Unmodified ext3 file system “Clean” FUSE Sandboxing FUSE

Page 14: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Andrew BenchmarkAndrew Benchmark

(Compile Phase 5: Am-utils)

Page 15: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Chirp BenchmarkChirp Benchmark

Page 16: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Overhead of Logging vs SandboxingOverhead of Logging vs Sandboxing

Chirp Benchmark

Page 17: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Custom BenchmarkCustom Benchmark

Page 18: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

ConclusionsConclusions

System call interposition at the user level is expensive

Disk-based caching is simple but robust Our approach is effective but could be

improved

System call interposition at the user level is expensive

Disk-based caching is simple but robust Our approach is effective but could be

improved

Page 19: User-Level Sandboxing with FUSE Brandon Rich Andrew Blaich University of Notre Dame CSE 60641

Questions?Questions?


Sandboxing & Virtualization: Modern Tools for Combating Malwarec4i.gmu.edu/eventsInfo/reviews/2011/slides/13-Ghosh... · 2013-10-29 · Sandboxing & Virtualization: Modern Tools for

Running Untrusted Application Code: Sandboxing · Many sandboxing techniques: Physical air gap, Virtual air gap (VMMs), System call interposition Software Fault isolation Application

Hack In Paris 2011 - Practical Sandboxing

Secure and Simple Sandboxing in SELinux

The methods of sandboxing and isolation - OpenAlt Lieskovsky - the...Approaches to sandboxing / isolation Classical – It's user's / administrator's responsibility to: Choose sandbox

The methods of sandboxing and isolation - OpenAlt Lieskovsky - the_methods...Approaches to sandboxing / isolation Classical – It's user's / administrator's responsibility to: Choose

Running Untrusted Application Code: Sandboxing

Comodo implements auto sandboxing technology

Blackhat EU 2011 - Practical Sandboxing

Sandboxing Wireless/RF Vulnerability Research of Connected

Why Do You Need Sandboxing?

Sandboxing and Signed Software

Sandboxing the Cyberspace for Cybersecurity Education and ... · Sandboxing the Cyberspace for Cybersecurity Education and Learning Stylianos Karagiannis1[0000-0001-9571-4417], Emmanouil

CSE 60641 – Microsoft Kinect Performance Slide 1 /7

Sandboxing€¦ · Sandboxing TheSandboxReportshowstheresultsofthefileanalysisintheTalosvirtualsandboxingenvironment

Secure and Simple Sandboxing in SELinuxnamei.org/presentations/selinux-sandboxing-fossmy2009.pdf · Reduce Ambient Authority Security can be simplified by reducing ambient auhority

Land & Plots at Blaich - MacPhee & Partners › wp-content › uploads › 2017 › 10 › Plots-at-… · Land & Plots at Blaich Blaich By Fort William PH33 7AN MacPhee & Partners

NJAS: Sandboxing Unmodified Applications in non …vigna/publications/2015_SPSM_NJAS.pdfNJAS: Sandboxing Unmodified Applications in non-rooted ... ... 2015

NGFW and Sandboxing

Efficient Software-Based Fault Isolation—sandboxing

Sandboxing JS and HTML. A lession Learned

In-Nimbo Sandboxing

Auto sandboxing technology a complete overview

MARY DIBIASE BLAICH

Fortinet sandboxing

Sandboxing JavaScript via Libraries and Wrappers

Advanced Threat Protection - Sandboxing 101

Sandboxing an Android application through system call

DOM Sandboxing

Sandboxing Linux code to mitigate exploitationrepository.root-me.org/Exploitation - Système/EN - Ekoparty 2013... · Sandboxing Linux code to mitigate exploitation (Or: How to ship

Prevention of Drone Jamming Using Hardware Sandboxing

Sandboxing Untrusted JavaScript

Sandboxing and Virtual Machines

Martin H.J. Wiesen a,*, Cornelia Blaich Paramagnetic micro

Practical Sandboxing on the Windows Platform