Abstract | ||
---|---|---|
In this paper we explore how recent advances in virtualisation support for commodity hardware could be utilised to reduce the Trusted Computing Base (TCB) and improve the code separation of a hypervisor. To achieve this, we reassess on the definition of the TCB and illustrate how segregation of different code blocks could be enforced by hardware protection mechanisms. We argue that many software-based efforts in TCB reduction and separation can benefit from utilising those hardware capabilities. |
Year | DOI | Venue |
---|---|---|
2010 | 10.1145/1867635.1867648 | STC@CCS |
Keywords | Field | DocType |
hardware extension,commodity hardware,virtualisation,recent advance,virtualisation support,software-based effort,tcb reduction,hardware protection mechanism,separating hypervisor,hardware capability,trusted computing base,different code block,code separation | Virtualization,Storage hypervisor,Computer science,Hypervisor,Software,Computer hardware,Trusted computing base,Commodity hardware,Operating system,Embedded system | Conference |
Citations | PageRank | References |
3 | 0.37 | 20 |
Authors | ||
3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Carl Gebhardt | 1 | 3 | 0.37 |
Chris I. Dalton | 2 | 143 | 15.21 |
Allan Tomlinson | 3 | 28 | 9.21 |