1 / 23

Least Privilege Separation Kernel (LPSK )

Least Privilege Separation Kernel (LPSK ). Accomplishments and Current Work. Outline. Why are we talking about this here? What is a separation kernel? What is the LPSK? Progress with the LPSK Future work Demo. Digression…. I think PowerPoint (and its ilk) are greatly misused.

sonja
Download Presentation

Least Privilege Separation Kernel (LPSK )

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Least Privilege Separation Kernel (LPSK) Accomplishments and Current Work

  2. Outline • Why are we talking about this here? • What is a separation kernel? • What is the LPSK? • Progress with the LPSK • Future work • Demo

  3. Digression… • I think PowerPoint (and its ilk) are greatly misused. • Therefore…

  4. What is the relevance?

  5. What is a Separation Kernel? OS SecurityKernel SeparationKernel

  6. Partition Flow

  7. As a VMM OS #1 OS #2 OS #3 OS #4 Separation Kernel

  8. Separation Kernel Protection Profile (SKPP)

  9. Least Privilege Separation Kernel (LPSK)

  10. Phase 1 LPSK Architecture

  11. LPSK Config (1) • Audit • Enabled? • Size of internal audit buffer • Action when audit is full • Run-time LPSK • How shall kernel use the screen? • Reserved memory locations

  12. LPSK Config (2) • Partitions • Round robin duration for all partitions • For each partition • Active? • Percent of round robin duration • Percent of system RAM • Partition with initial I/O focus • Partition to handle SAK

  13. LPSK Config (3) • Partition flow rules • Processes in Partition ‘x’ can access Partition ‘y’ (RO or RW) • Acyclic flow rules

  14. LPSK Config (4) • Imported files from disk • Location on disk • Home partition • Assigned PL • Audited events

  15. LPSK Config (5) • RAM segments • Size • Home partition • Assigned PL • Audited events

  16. LPSK Config (6) • Devices • Data channel or control channel • Home partition • Multiplexed or dedicated • Device specific attributes(e.g., keyboard buffer size) • Audited events

  17. LPSK Config (7) • Processes • Home partition • % of partition time slice • Subject defintions • Code location and PL assignment • Kernel APIs allowed to use • Subject-to-resource flows allowed • (e.g., subject x can access device y) • Audited events

  18. Funded Objective

  19. Progress Report

  20. What the Prototype has now Inter-process communication using: Eventcounts Sequencers Signals Shared memory Kernel event auditing I/O focus switching between processes • Kernel config options • Multitasking processes • Segmented memory • Device drivers for: • Disk drives (PATA/SATA) • Hardware clock • Software clock (low res) • Video (text mode) • Keyboard (PS/2) • Configuration security policies

  21. Outside the LPSK

  22. Future Work

  23. Demo

More Related