Journal
ACM SIGPLAN NOTICES
Volume 51, Issue 4, Pages 277-290Publisher
ASSOC COMPUTING MACHINERY
DOI: 10.1145/2954679.2872372
Keywords
Security; Verification; Application protection; Virtualization-based security; Paraverification; Crash consistency
Categories
Funding
- NIH [R01 LM011028-01]
- NSF [CNS-1228843]
- Direct For Computer & Info Scie & Enginr
- Division Of Computer and Network Systems [1228843] Funding Source: National Science Foundation
Ask authors/readers for more resources
Sego is a hypervisor-based system that gives strong privacy and integrity guarantees to trusted applications, even when the guest operating system is compromised or hostile. Sego verifies operating system services, like the file system, instead of replacing them. By associating trusted metadata with user data across all system devices, Sego verifies system services more efficiently than previous systems, especially services that depend on data contents. We extensively evaluate Sego's performance on real workloads and implement a kernel fault injector to validate Sego's file systemagnostic crash consistency and recovery protocol.
Authors
I am an author on this paper
Click your name to claim this paper and add it to your profile.
Reviews
Recommended
No Data Available