Filters








76 Hits in 2.0 sec

Engineering a security kernel for Multics

Michael D. Schroeder
1975 Proceedings of the fifth symposium on Operating systems principles - SOSP '75  
to make verification of correctness by auditing possible, and to demonstrate by test'implementation that the security kernel so developed is capable of supporting the functionality of Multics completely  ...  This paper describes a research project to engineer a security kernel for Multics, a general-purpose, remotely accessed, multiuser computer system.  ...  members in the Division.  ... 
doi:10.1145/800213.806518 dblp:conf/sosp/Schroeder75 fatcat:nbceukdiarhnxkojlzk5v2hcqm

Engineering a security kernel for Multics

Michael D. Schroeder
1975 ACM SIGOPS Operating Systems Review  
to make verification of correctness by auditing possible, and to demonstrate by test'implementation that the security kernel so developed is capable of supporting the functionality of Multics completely  ...  This paper describes a research project to engineer a security kernel for Multics, a general-purpose, remotely accessed, multiuser computer system.  ...  members in the Division.  ... 
doi:10.1145/1067629.806518 fatcat:l7rwu3onirf75h7flcjhglppku

Multics

F. J. Corbató, J. H. Saltzer, C. T. Clingen
1971 Proceedings of the November 16-18, 1971, fall joint computer conference on - AFIPS '71 (Fall)  
By a computer utility it was meant that one had a community computer facility with: 1. Convenient remote terminal access as the normal mode of system usage; 2.  ...  Multics is now the most widely used time-sharing system at M.I.T., supporting a user community of some 500 registered subscribers.  ...  Following is a checklist of currently available features and facilities of Multics.  ... 
doi:10.1145/1478873.1478950 dblp:conf/afips/CorbatoSC72 fatcat:ikcj7p54wzcotfjsdg2cwc37wi

Scomp: A Solution to the Multilevel Security Problem

Fraim
1983 Computer  
The Scomp trusted operating program, or STOP, is a security-kernel-based, general-purpose operating system that provides a multilevel hierarchical file system, interprocess communication, security administrator  ...  The Honeywell Secure Communications Processor supports a variety of specialized applications that require the processing of information with multilevel security attributes.  ...  A secure front-end processor was needed that would use the security kernel approach to control communications access to Multics.  ... 
doi:10.1109/mc.1983.1654440 fatcat:c3rr57x6ivhftf2x5hyxpbzrva

Issues in kernel design [chapter]

G. J. Popek, C. S. Kline
1978 Lecture Notes in Computer Science  
For example, extensive real time functions, synchronization facilities, and interprocess communication mechanisms may be desired.  ...  The UCLA kerneP7 does not support the process hierarchies required by UNIX, although they can be built outside the kernel using inter-process communication facilities.  ... 
doi:10.1007/3-540-08755-9_5 fatcat:y43endaxqvhs3emjwyqyyrrby4

Structured specification of a Security Kernel

K. G. Walter, J. M. Gilligan, S. I. Schaen, W. F. Ogden, W. C. Rounds, D. G. Shumway, D. D. Schaeffer, K. J. Biba, F. T. Bradshaw, S. R. Ames
1975 SIGPLAN notices  
It is intended that the final level of modeling will specify the primitive commands for the kernel of a Multics-like system and will enumerate precisely those assertions which must be proved about the  ...  The second model, M l, defines a treestructured file system, and an -interagent communication system while M~ adds details concerning segmentation in a dynamic ~ environment.  ...  The executors will use the mailboxes for interprocess communication, and there are two relations to indicate which mailboxes each executor is currently using.  ... 
doi:10.1145/390016.808450 fatcat:sjudbi2tdfcufk5gxituoxdys4

Structured specification of a Security Kernel

K. G. Walter, J. M. Gilligan, S. I. Schaen, W. F. Ogden, W. C. Rounds, D. G. Shumway, D. D. Schaeffer, K. J. Biba, F. T. Bradshaw, S. R. Ames
1975 Proceedings of the international conference on Reliable software -  
It is intended that the final level of modeling will specify the primitive commands for the kernel of a Multics-like system and will enumerate precisely those assertions which must be proved about the  ...  The second model, M l, defines a treestructured file system, and an -interagent communication system while M~ adds details concerning segmentation in a dynamic ~ environment.  ...  The executors will use the mailboxes for interprocess communication, and there are two relations to indicate which mailboxes each executor is currently using.  ... 
doi:10.1145/800027.808450 fatcat:aqngnhcd75fl3imwslsjilia2y

The Multics kernel design project

Michael D. Schroeder, David D. Clark, Jerome H. Saltzer
1977 Proceedings of the sixth symposium on Operating systems principles - SOSP '77  
We describe a plan to create an auditable version of Multics. The engineering experiments of that plan are now complete.  ...  The performance and size effects of this work are encouraging. We conclude that verifiable operating system kernels may someday be feasible.  ...  Two multiplexed communication streams are attached to the Multics system: the ARPANET, and the local front end processor with all its attached terminals.  ... 
doi:10.1145/800214.806546 dblp:conf/sosp/SchroederCS77 fatcat:2dwq3y5vqfgavlw3qxdnegbspi

The Multics kernel design project

Michael D. Schroeder, David D. Clark, Jerome H. Saltzer
1977 ACM SIGOPS Operating Systems Review  
We describe a plan to create an auditable version of Multics. The engineering experiments of that plan are now complete.  ...  The performance and size effects of this work are encouraging. We conclude that verifiable operating system kernels may someday be feasible.  ...  Two multiplexed communication streams are attached to the Multics system: the ARPANET, and the local front end processor with all its attached terminals.  ... 
doi:10.1145/1067625.806546 fatcat:fjiklkpy2vf5fgebsfortvk7te

A multi-microprocessor computer system architecture

Bruce W. Arden, Alan D. Berenbaum
1975 Proceedings of the fifth symposium on Operating systems principles - SOSP '75  
The development of microprocessors has suggested the design of distributed processing and multiprocessing computer architectures.  ...  A computer system design incorporating these ideas is proposed, along with its impact on memory management and process control aspects of the system's operating system.  ...  If there is no room, then some other page may be transferred to the file system. The concept of placing process queues in hardware also simplifies interprocess communication.  ... 
doi:10.1145/800213.806529 dblp:conf/sosp/ArdenB75 fatcat:dnjsdq52f5bnbpw76teplmo3ru

Project SUE as a learning experience

K. C. Sevcik, J. W. Atwood, M. S. Grushcow, R. C. Holt, J. J. Horning, D. Tsichritzis
1972 Proceedings of the December 5-7, 1972, fall joint computer conference, part I on - AFIPS '72 (Fall, part I)  
ACKNOWLEDGMENTS Project SUE is supported by the National Research Council of Canada through the Computer Systems Research Group at the University of Toronto.  ...  All interprocess communication is done with the facility call mechanism.  ...  Message passing through ports and mailboxes was initially accepted as the mechanism for interprocess communication in Project SUE.  ... 
doi:10.1145/1479992.1480036 dblp:conf/afips/SevcikAGHHT72 fatcat:p2vt6fcrfjgipog3kzcgbbyto4

Operating System Security

Trent Jaeger
2008 Synthesis Lectures on Information Security Privacy and Trust  
He is active in the security research community, having been a member of the program committees of all the major security conferences, and the program chair of the ACM CCS Government and Industry Track  ...  Biographies Trent Jaeger is an Associate Professor in the Computer Science and Engineering Department at The Pennsylvania State University and the Co-Director of the Systems and Internet Infrastructure  ...  UNIX uses the concept of a file for all persistent system objects, such as secondary storage, I/O devices, network, and interprocess communication.  ... 
doi:10.2200/s00126ed1v01y200808spt001 fatcat:o7qgtis6zffr3disdujoq4izaa

Virtualization

Andrew Herbert
2015 SOSP History Day 2015 on - SOSP '15  
and Communication Service (RSCS) that provided networking facilities between machines running VM/ 370.  ...  This was fine when applications ran in a single process, but with the advent of interprocess communications it was sometimes desirable for a process to share resources with or donate then to one of its  ... 
doi:10.1145/2830903.2830909 dblp:conf/sosp/Herbert15 fatcat:mposov6rcjchvbagkz7476zppu

Virtual Control Storage-curity measures in VM/370

C. R. Attanasio
1979 IBM Systems Journal  
Watson, A Shared Segment and Interprocess Communica- tion Facility for VM/270, Research Report RJ1579, IBM Research Division, 5600 Cottle Road, San Jose, California 95193 (May 1975). . C.  ...  supervisor (ker- nel in MULTICS terminology).  ... 
doi:10.1147/sj.181.0093 fatcat:tf4nmcwsdrdwlmqffxxquyz5aq

JSYS traps

Robert H. Thomas
1975 Proceedings of the May 19-22, 1975, national computer conference and exposition on - AFIPS '75  
The "facility call" concept was developed to meet the interprocess communication requirements presented by such a system organization. To request a service a process issues a facility call.  ...  Because facility calls can be used by all processes for interprocess communication the distinction between "user" and "system" processes is a weak one.  ... 
doi:10.1145/1499949.1500017 dblp:conf/afips/Thomas75 fatcat:6xtx53bd45g4jnap6n4axmz55a
« Previous Showing results 1 — 15 out of 76 results