3.9 Article Proceedings Paper

Sego: Pervasive Trusted Metadata for Efficiently Verified Untrusted System Services

ACM SIGPLAN NOTICES (2016)

Get Full Text
Add to Collection

Journal

ACM SIGPLAN NOTICES
Volume 51, Issue 4, Pages 277-290

Publisher

ASSOC COMPUTING MACHINERY
DOI: 10.1145/2954679.2872372

Keywords

Security; Verification; Application protection; Virtualization-based security; Paraverification; Crash consistency

Categories

Computer Science, Software Engineering

Funding

  1. NIH [R01 LM011028-01]
  2. NSF [CNS-1228843]
  3. Direct For Computer & Info Scie & Enginr
  4. Division Of Computer and Network Systems [1228843] Funding Source: National Science Foundation

Ask authors/readers for more resources

Protocol

Community support

Reagent

Community support

Sego is a hypervisor-based system that gives strong privacy and integrity guarantees to trusted applications, even when the guest operating system is compromised or hostile. Sego verifies operating system services, like the file system, instead of replacing them. By associating trusted metadata with user data across all system devices, Sego verifies system services more efficiently than previous systems, especially services that depend on data contents. We extensively evaluate Sego's performance on real workloads and implement a kernel fault injector to validate Sego's file systemagnostic crash consistency and recovery protocol.

Authors

I am an author on this paper
Click your name to claim this paper and add it to your profile.

Reviews

Primary Rating

3.9
Not enough ratings

Secondary Ratings

Novelty
-
Significance
-
Scientific rigor
-
Rate this paper

Recommended

No Data Available
No Data Available
Webinars Posters Questions Hubs Funding Journals Papers Connect Collections Reviewers About Us FAQs Mobile App Privacy Policy Terms of Use
© Peeref 2019-2024. All rights reserved.