With PQDT Open, you can read the full text of open access dissertations and theses free of charge.
About PQDT Open
Search
COMING SOON! PQDT Open is getting a new home!
ProQuest Open Access Dissertations & Theses will remain freely available as part of a new and enhanced search experience at www.proquest.com.
Questions? Please refer to this FAQ.
General-purpose operating system kernels are often incapable of validating communication over interfaces between its trusted code base and the untrusted application space. Context aware configurable modules loaded into kernel space can be used to validate or monitor such communication to improve security, create protection domains or analyze trends to apply heuristics against potentially harmful exchanges. In this paper we present KMux or Kernel Multiplexer, a general-purpose framework consisting of kernel modules or subkernels that utilizes x86 hardware interface to establish control over the primary kernel and enhances operating system interfaces available to user level processes. Each subkernel specializes in a limited, cohesive set of interfaces and used in conjunction with each other to exercise different granularity of control. We also discuss sample implementation of the KMux framework to create protection domains, compartmentalize resource usage and multiplex among self-sufficient kernels.
Some files may require a special program or browser plug-in. More Information
Advisor: | Parmer, Gabriel A. |
Commitee: | Vora, Poorvi L., Zhang, Nan |
School: | The George Washington University |
Department: | Computer Science |
School Location: | United States -- District of Columbia |
Source: | MAI 49/05M, Masters Abstracts International |
Source Type: | DISSERTATION |
Subjects: | Computer Engineering, Computer science |
Keywords: | Interposition, Kernel, Multiplexing, Operating system, Sandboxing, System call |
Publication Number: | 1492034 |
ISBN: | 978-1-124-62694-9 |