Conference Proceeding Article
Virtualization based memory isolation has beenwidely used as a security primitive in many security systems.This paper firstly provides an in-depth analysis of itseffectiveness in the multicore setting; a first in the literature.Our study reveals that memory isolation by itself is inadequatefor security. Due to the fundamental design choices inhardware, it faces several challenging issues including pagetable maintenance, address mapping validation and threadidentification. As demonstrated by our attacks implementedon XMHF and BitVisor, these issues undermine the security ofmemory isolation. Next, we propose a new isolation approachthat is immune to the aforementioned problems. In our design,the hypervisor constructs a fully isolated micro computingenvironment (FIMCE) that exposes a minimal attack surfaceto an untrusted OS on a multicore platform. By virtue ofits architectural niche, FIMCE offers stronger assurance andgreater versatility than memory isolation. We have built aprototype of FIMCE and measured its performance. To showthe benefits of using FIMCE as a building block, we have alsoimplemented several practical applications which cannot besecurely realized by using memory isolation alone.
android, call graph, dependency, information retrieval, program analysis, program comprehension
Computer Engineering | Databases and Information Systems
Proceeding on the 2nd IEEE European Symposium on Security and Privacy (EuroS&P), UPMC Campus JussieuParis, France, 2017 April 26-28
City or Country
ZHAO, Siqi and DING, Xuhua.
On the effectiveness of virtualization based memory isolation on multicore platforms. (2017). Proceeding on the 2nd IEEE European Symposium on Security and Privacy (EuroS&P), UPMC Campus JussieuParis, France, 2017 April 26-28. Research Collection School Of Information Systems.
Available at: http://ink.library.smu.edu.sg/sis_research/3699
Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.