μTiles: Efficient Intra-Process Privilege Enforcement of Memory Regions [article]

Zahra Tarkhani, Anil Madhavapeddy
<span title="2020-04-09">2020</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>
With the alarming rate of security advisories and privacy concerns on connected devices, there is an urgent need for strong isolation guarantees in resource-constrained devices that demand very lightweight solutions. However, the status quo is that Unix-like operating systems do not offer privilege separation inside a process. Lack of practical fine-grained compartmentalization inside a shared address space leads to private data leakage through applications' untrusted dependencies and
more &raquo; ... d threads. To this end, we propose μTiles, a lightweight kernel abstraction and set of security primitives based on mutual distrust for intra-process privilege separation, memory protection, and secure multithreading. μTiles takes advantage of hardware support for virtual memory tagging (e.g., ARM memory domains) to achieve significant performance gain while eliminating various hardware limitations. Our results (based on OpenSSL, the Apache HTTP server, and LevelDB) show that μTiles is extremely lightweight (adds ≈ 10KB to kernel image) for IoT use cases. It adds negligible runtime overhead (≈ 0.5%-3.5%) and is easy to integrate with existing applications for providing strong privilege separation.
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2004.04846v1">arXiv:2004.04846v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/hhctnbtynrdnnaobt5avpdt5yy">fatcat:hhctnbtynrdnnaobt5avpdt5yy</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20200414231514/https://arxiv.org/pdf/2004.04846v1.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2004.04846v1" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>