Vulnerabilities in Synchronous IPC Designs (2003) [9 citations — 0 self]

Download:
http://www.eros-os.org/devel/../papers/IPC-Assuran
DBLP
CACHED:

by Jonathan S. Shapiro

In Proc. IEEE Symposium on Security and Privacy

Add To MetaCart

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@INPROCEEDINGS{Shapiro03vulnerabilitiesin,
    author = {Jonathan S. Shapiro},
    title = {Vulnerabilities in Synchronous IPC Designs},
    booktitle = {In Proc. IEEE Symposium on Security and Privacy},
    year = {2003},
    pages = {251--262},
    publisher = {IEEE Computer Society Press}
}

Bookmarks

OpenURL

Abstract:

Recent advances in interprocess communication (IPC) performance have been exclusively based on thread-migrating IPC designs. Thread-migrating designs assume that IPC interactions are synchronous, and that user-level execution will usually resume with the invoked process (modulo preemption). This IPC design approach offers shorter instruction path lengths, requires fewer locks, has smaller instruction and data cache footprints, dramatically reduces TLB overheads, and consequently offers higher performance and lower timing variance than previous IPC designs. With care, it can be performed as an atomic unit of operation. While the performance of...

Citations

410	A BSD packet filter: A new architecture for user-level packet capture – MCCANNE, JACOBSON - 1993
257	The V distributed system – Cheriton - 1988
238	A new kernel foundation for UNIX development – Mach - 1986
231	Lightweight remote procedure call – Bershad, Anderson, et al. - 1990
202	The packet filter: An efficient mechanism for user-level network code – MOGUL, RASHID, et al. - 1987
143	The impact of operating system structure on memory system performance – Chen, Bershad - 1993
129	Improving IPC by kernel design – Liedtke - 1993
113	EROS: A fast capability system – Shapiro, Smith, et al. - 1999
110	DPF: Fast, flexible message demultiplexing using dynamic code generation – Engler, Kaashoek - 1996
100	Hydra/C.mmp: An Experimental Computer System – Wulf, Levin, et al. - 1981
78	Evolving Mach 3.0 to a Migrating Thread Model – Ford, Lepreau - 1994
46	KeyKOS architecture – Hardy - 1985
40	A distributed secure system – Rushby, Randell - 1983
36	Improving Security and Performance for Capability Systems – Karger - 1988
34	An augmented capability architecture to support lattice security – Karger - 1984
32	The pebble component-based operating system – GABBER, SMALL, et al. - 1999
31	Interface and execution models in the Fluke kernel – Ford, Hibler, et al. - 1999
29	A retrospective on the VAX VMM security kernel – Karger, Zurko, et al. - 1991
28	Improved Address-Space Switching on Pentium Processors by Transparently Multiplexing User Address Spaces – Liedtke - 1995
26	Capability-based Financial Instruments – Miller, Morningstar, et al. - 2000
25	Verifying the EROS confinement mechanism – Shapiro, Weber - 2000
24	The MULTICS Kernel Design Project – Schroeder, Saltzer - 1977
20	L.: The SawMill multiserver approach – Gefflaut, Jaeger, et al. - 2000
20	Reflections on an Operating System Design – Lampson, Sturgis - 1976
18	The measured performance of a fast local ipc – Shapiro, Farber, et al. - 1996
17	Non-discretionary access control for decentral-ized computing systems – Karger - 1977
12	Using registers to optimize cross-domain call performance – Karger - 1989
10	Flexible access control using IPC redirection – Jaeger, Elphinstone, et al.
6	Overview of the Chorus distributed system – Rozier, Abrossimov, et al. - 1991
5	Synchronous IPC over transparent monitors – Jaeger, Tidswell, et al. - 2000
4	Preventing Denial-of-Service Attacks on a -Kernel for WebOSes – Liedtke, Islam, et al. - 1997
1	Omega0: A portable interface to interrupt hardware for l4 systems – Loser, Hohmuth - 1999

View or Download | Add to My Collection | Correct Errors