An I/O Separation Model for Formal Verification of Kernel Implementations
2021 IEEE Symposium on Security and Privacy (SP)(2021)
摘要
Commodity I/O hardware often fails to separate I/O transfers of isolated OS and applications code. Even when using the best I/O hardware, commodity systems sometimes trade off separation assurance for increased performance. Remarkably, device firmware need not be malicious. Instead, any malicious driver, even if isolated in its own execution domain, can manipulate its device to breach I/O separati...
更多查看译文
关键词
Performance evaluation,Authorization,Privacy,Computational modeling,Computer architecture,Hardware,Security
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要