OSDI '06 Abstract
Pp. 263–278 of the Proceedings
Making Information Flow Explicit in HiStar
Nickolai Zeldovich and Silas Boyd-Wickizer, Stanford University;
Eddie Kohler, University of California, Los Angeles;
David Mazières, Stanford University
Abstract
HiStar is a new operating system designed to minimize
the amount of code that must be trusted. HiStar provides
strict information flow control, which allows users
to specify precise data security policies without unduly
limiting the structure of applications. HiStar's security
features make it possible to implement a Unix-like environment
with acceptable performance almost entirely in
an untrusted user-level library. The system has no notion
of superuser and no fully trusted code other than the kernel.
HiStar's features permit several novel applications,
including an entirely untrusted login process, separation
of data between virtual private networks, and privacypreserving,
untrusted virus scanners.
- View the full text of this paper in PDF.
Until November 2007, you will need your USENIX membership identification in order to access the full papers.
The Proceedings are published as a collective work, © 2006 by the USENIX Association. All Rights Reserved. Rights to individual papers remain with the author or the author's employer. Permission is granted for the noncommercial reproduction of the complete work for educational or research purposes. USENIX acknowledges all trademarks within this paper.
|
