BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Nested Kernel: An Operating System Architecture for Intra-Kernel P
 rivilege Separation - Nathan Dautenhahn\, University of Illinois at Urbana
 -Champaign
DTSTART:20150310T140000Z
DTEND:20150310T150000Z
UID:TALK58032@talks.cam.ac.uk
CONTACT:Laurent Simon
DESCRIPTION:*Abstract:*\nMonolithic operating system designs undermine the
  security of computing systems by allowing single exploits anywhere in the
  kernel to enjoy full supervisor privileges. The nested kernel operating s
 ystem architecture addresses this problem by “nesting” a small\, isola
 ted kernel within a traditional monolithic kernel. The “nested kernel”
  interposes on all updates to virtual memory translations to assert protec
 tions on physical memory\, thus significantly reducing the trusted computi
 ng base for memory access control enforcement. We incorporated the nested 
 kernel architecture into FreeBSD on x86-64 hardware by write-protecting MM
 U translations and de-privileging the untrusted part of the kernel\, there
 by enabling the entire operating system\, trusted and untrusted components
  alike\, to operate at the highest hardware privilege level. Our implement
 ation inherently enforces kernel code integrity while still allowing dynam
 ically loaded kernel modules\, thus defending against code injection attac
 ks. We also demonstrate\, by introducing write-mediation and write-logging
  services\, that the nested kernel architecture allows kernel developers t
 o isolate memory in ways not possible in monolithic kernels. Performance o
 f the nested kernel prototype shows modest overheads: < 1% average for Apa
 che\, and 2.7% for kernel compile. Overall\, our results and experience sh
 ow that the nested kernel design can be retrofitted to existing monolithic
  kernels\, providing important security benefits.\n\n*Bio:*\nNathan Dauten
 hahn is a sixth-year doctoral candidate in the Department of Computer Scie
 nce at the University of Illinois at Urbana-Champaign. His research invest
 igates trustworthy system design by developing experimental operating syst
 ems\, compilers\, and hardware components. This research has led to public
 ations in key systems and security venues\, including IEEE S&P\, CCS\, NDS
 S\, ASPLOS\, and ISCA. His latest work\, on the nested kernel architecture
 \, is identifying solutions for defending against insecure and malicious o
 perating systems\; this is the topic of his thesis. The nested kernel arch
 itecture is also under consideration for inclusion in HardenedBSD\, an ope
 rating system variant of FreeBSD. Dautenhahn also actively contributes to 
 the CS department graduate program by participating in many activities\, s
 uch as establishing the Doctoral Education Perspectives seminar\, formally
  mentoring undergraduate and graduate students\, and serving on the Comput
 er Science Graduate Academic Council and the Engineering Graduate Student 
 Advisory Committee. 
LOCATION:LT2\, Computer Laboratory\, William Gates Building
END:VEVENT
END:VCALENDAR