2 Hits in 3.3 sec

ÜBERSPARK † : Enforcing Verifiable Object Abstractions for Automated Compositional Security Analysis of a Hypervisor

Amit Vasudevan, Sagar Chaki, Petros Maniatis, Limin Jia, Anupam Datta
We present überSpark (üSpark), an innovative architecture for compositional verification of security properties of extensible hypervisors written in C and Assembly. üSpark comprises two key ideas: (i)  ...  endowing low-level system software with abstractions found in higher-level languages (e.g., objects, interfaces, function-call semantics for implementations of interfaces, access control on interfaces  ...  This work was partially supported by the Intel Science and Technology Center for Secure Computing, AFOSR MURI on Science of Cybersecurity, the NSA/CMU Science of Security Lablet, and the NSF CNS-1018061  ... 

A Secure and Formally Verified Commodity Multiprocessor Hypervisor

Shih-Wei Li
This dissertation introduces microverification, a new approach for formally verifying the security properties of commodity systems.  ...  Microverification reduces the proof effort for a commodity system by retrofitting the system into a small core and a set of untrusted services, thus making it possible to reason about properties of the  ...  Finally, we presented a security analysis of HypSec, and discussed a set of security properties of HypSec enforces for protecting VM confidentiality and integrity.  ... 
doi:10.7916/d8-s2kz-e886 fatcat:blauq4tv55gl5bhnshrnoxrebq