The Case for Less Predictable Operating System Behavior

Wednesday, May 20, 2015 - 9:30am-10:00pm
Authors: 

Ruimin Sun, University of Florida; Donald E. Porter, Stony Brook University; Daniela Oliveira, University of Florida; Matt Bishop, University of California, Davis

Abstract: 

“No one is so brave that he is not disturbed by something unexpected.” Julius Caesar

The operating system is increasingly regarded as untrustworthy. Applications, hardware, and hypervisors are erecting defenses to insulate themselves from the operating system. This paper explores the potential benefits if operating systems simply embraced these lowered expectations and deliberately varied API behavior. We argue that, even for trusted or benign applications, diversity roughly within the specification can improve resilience to attack and improve robustness. Malicious software tends to be brittle; a preliminary case study indicates that, for software of questionable origin, a somewhat hostile operating system may do more good than harm for system security. This paper describes the architecture of Chameleon, an ongoing project to implement spectrum behavior as an operating system feature.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

BibTeX
@inproceedings {189932,
author = {Ruimin Sun and Donald E. Porter and Daniela Oliveira and Matt Bishop},
title = {The Case for Less Predictable Operating System Behavior},
booktitle = {15th Workshop on Hot Topics in Operating Systems (HotOS XV)},
year = {2015},
address = {Kartause Ittingen, Switzerland},
url = {https://www.usenix.org/conference/hotos15/workshop-program/presentation/sun},
publisher = {USENIX Association},
month = may
}
Download
Sun PDF
View the slides