Presentation is loading. Please wait.

Presentation is loading. Please wait.

Shakeel Rutgers University Vinod Rutgers University Michael M. University of Wisconsin-Madison Chih-Cheng Rutgers University.

Published byJemima Copeland Modified over 9 years ago

Similar presentations

Presentation on theme: "Shakeel Rutgers University Vinod Rutgers University Michael M. University of Wisconsin-Madison Chih-Cheng Rutgers University."— Presentation transcript:

1 Shakeel Butt @ Rutgers University Vinod Ganapathy @ Rutgers University Michael M. Swift @ University of Wisconsin-Madison Chih-Cheng Chang @ Rutgers University ACSAC 2009

2 Introduction Background and scope Design Implementation Evaluation Related Work Summary

3 Device drivers execute with kernel privilege in most commodity operating systems and have unrestricted access to kernel data structure. Propose a security architecture that offers commodity operating systems the benefits of executing device drivers in user mode without affecting common-case performance

4 Threats at the kernel/driver interface Kernel data structures are routinely updated by device drivers, and the kernel impose no restrictions on the memory regions accessible to drivers or devices. Threats at the driver/device interface A compromised driver can maliciously modify the state of the device

5 Goals Kernel data structure integrity Good common-case performance Compatibility

6 Architecture

7 Microdriver Consist of k-driver & u-driver Microdriver runtime Communication Object tracking RPC monitor Monitor data transfer Monitor control transfer

8 Background on Microdrivers

9 Microdriver split tool - DriverSlicer Splitter Code generator Invariant inference tool – Daikon Front end Inference engine

10 Monitoring kernel data structure updates Training phace Inferring data structure integrity constraints Constancy of scalars and pointers Relationships between variables Ranges/sets of values Linked list invariants

11 Enforcement phase Enforcing data structure integrity constraints Invariant table Vault table

12 Monitoring control transfers Extracting control transfer policies Static analysis Enforcing control transfer policies Upcall Downcall

13 Conduct on four drivers RealTek RTL-8139 (8139too) RealTek RTL-8139C+ (8139cp) Ensoniq sound card (ens1371) USB interface (uhci-hcd)

14 Privilege separation

15 Ability to prevent attacks Control hijacking via injected downcalls Control hijacking via modified function pointers Non-control data attacks

16 False positives and negatives

17 Performance TCP receive and send buffer sizes of 87KB and 16KB, respectively. Copy a 140MB file into a USB disk Play a 256-Kbps MP3

18 Hardware-based isolation techniques Virtual machine-based techniques Language-based mechanisms Microkernels User-mode driver frameworks

19 Better isolate kernel data from device drivers without sacrificing performance. Compatible with commodity operating system.

Download ppt "Shakeel Rutgers University Vinod Rutgers University Michael M. University of Wisconsin-Madison Chih-Cheng Rutgers University."

Similar presentations

Monitoring Data Structures Using Hardware Transactional Memory Shakeel Butt 1, Vinod Ganapathy 1, Arati Baliga 2 and Mihai Christodorescu 3 1 Rutgers University,

Monitoring Data Structures Using Hardware Transactional Memory Shakeel Butt 1, Vinod Ganapathy 1, Arati Baliga 2 and Mihai Christodorescu 3 1 Rutgers University,
Ensuring Operating System Kernel Integrity with OSck By Owen S. Hofmann Alan M. Dunn Sangman Kim Indrajit Roy Emmett Witchel Kent State University College.

Ensuring Operating System Kernel Integrity with OSck By Owen S. Hofmann Alan M. Dunn Sangman Kim Indrajit Roy Emmett Witchel Kent State University College.
EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM B. Bershad, S. Savage, P. Pardyak, E. G. Sirer, D. Becker, M. Fiuczynski, C. Chambers,

EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM B. Bershad, S. Savage, P. Pardyak, E. G. Sirer, D. Becker, M. Fiuczynski, C. Chambers,
Chorus and other Microkernels Presented by: Jonathan Tanner and Brian Doyle Articles By: Jon Udell Peter D. Varhol Dick Pountain.

Chorus and other Microkernels Presented by: Jonathan Tanner and Brian Doyle Articles By: Jon Udell Peter D. Varhol Dick Pountain.
New Direction for Software Protection in Embedded Systems Department of EECS University of Michigan Feb 22, 2007 Kang G. Shin.

New Direction for Software Protection in Embedded Systems Department of EECS University of Michigan Feb 22, 2007 Kang G. Shin.
Software-based Code Attestation for Wireless Sensors.

Software-based Code Attestation for Wireless Sensors.
CMPT 300: Final Review Chapters 8 – 12. 2 Memory Management: Ch. 8, 9 Address spaces Logical (virtual): generated by the CPU Physical: seen by the memory.

CMPT 300: Final Review Chapters 8 – Memory Management: Ch. 8, 9 Address spaces Logical (virtual): generated by the CPU Physical: seen by the memory.
OS2-1 Chapter 2 Computer System Structures. OS2-2 Outlines Computer System Operation I/O Structure Storage Structure Storage Hierarchy Hardware Protection.

OS2-1 Chapter 2 Computer System Structures. OS2-2 Outlines Computer System Operation I/O Structure Storage Structure Storage Hierarchy Hardware Protection.
INTRODUCTION OS/2 was initially designed to extend the capabilities of DOS by IBM and Microsoft Corporations. To create a single industry-standard operating.

INTRODUCTION OS/2 was initially designed to extend the capabilities of DOS by IBM and Microsoft Corporations. To create a single industry-standard operating.
An Integrated Framework for Dependable Revivable Architectures Using Multi-core Processors Weiding Shi, Hsien-Hsin S. Lee, Laura Falk, and Mrinmoy Ghosh.

An Integrated Framework for Dependable Revivable Architectures Using Multi-core Processors Weiding Shi, Hsien-Hsin S. Lee, Laura Falk, and Mrinmoy Ghosh.
Introduction to Kernel

Introduction to Kernel
1 Building with Assurance CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 10, 2004.

1 Building with Assurance CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 10, 2004.
Embedded Real-time Systems The Linux kernel. The Operating System Kernel Resident in memory, privileged mode System calls offer general purpose services.

Embedded Real-time Systems The Linux kernel. The Operating System Kernel Resident in memory, privileged mode System calls offer general purpose services.
Improving IPC by Kernel Design Jochen Liedtke Shane Matthews Portland State University.

Improving IPC by Kernel Design Jochen Liedtke Shane Matthews Portland State University.
Figure 1.1 Interaction between applications and the operating system.

Figure 1.1 Interaction between applications and the operating system.
Cs238 Lecture 3 Operating System Structures Dr. Alan R. Davis.

Cs238 Lecture 3 Operating System Structures Dr. Alan R. Davis.
1 Last Class: Introduction Operating system = interface between user & architecture Importance of OS OS history: Change is only constant User-level Applications.

1 Last Class: Introduction Operating system = interface between user & architecture Importance of OS OS history: Change is only constant User-level Applications.
OPERATING SYSTEMS Introduction

OPERATING SYSTEMS Introduction
OS Organization. OS Requirements Provide resource abstractions –Process abstraction of CPU/memory use Address space Concurrency Thread abstraction of.

OS Organization. OS Requirements Provide resource abstractions –Process abstraction of CPU/memory use Address space Concurrency Thread abstraction of.
Slide 3-1 Copyright © 2004 Pearson Education, Inc. Operating Systems: A Modern Perspective, Chapter 3 Operating System Organization.

Slide 3-1 Copyright © 2004 Pearson Education, Inc. Operating Systems: A Modern Perspective, Chapter 3 Operating System Organization.

Similar presentations

Ads by Google