A Practical Approach to Identifying Storage and Timing Channels

Kemmerer, Richard A.

doi:10.1109/sp.1982.10007

Cited by 44 publications

(58 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The detection of covert timing channels is accomplished using statistical tests to differentiate covert traffic from legitimate traffic. While the focus of earlier work is on disrupting covert timing channels [9], [10], [11], [12], [13] or on eliminating them in the design of systems [14], [15], [16], more recent research has begun to investigate the design and detection of covert timing channels [1], [2], [3], [4], [17], [5], [18]. In the following subsections, we give an overview of recent research on covert timing channels and detection tests.…”

Section: Background and Related Workmentioning

confidence: 99%

An Entropy-Based Approach to Detecting Covert Timing Channels

Gianvecchio

Wang

2011

IEEE Trans. Dependable and Secure Comput.

118

110

View full text Add to dashboard Cite

Abstract-The detection of covert timing channels is of increasing interest in light of recent exploits of covert timing channels over the Internet. However, due to the high variation in legitimate network traffic, detecting covert timing channels is a challenging task. Existing detection schemes are ineffective at detecting most of the covert timing channels known to the security community. In this paper, we introduce a new entropybased approach to detecting various covert timing channels. Our new approach is based on the observation that the creation of a covert timing channel has certain effects on the entropy of the original process, and hence, a change in the entropy of a process provides a critical clue for covert timing channel detection. Exploiting this observation, we investigate the use of entropy and conditional entropy in detecting covert timing channels. Our experimental results show that our entropybased approach is sensitive to the current covert timing channels and is capable of detecting them in an accurate manner.

show abstract

Section: Background and Related Workmentioning

confidence: 99%

An Entropy-Based Approach to Detecting Covert Timing Channels

Gianvecchio

Wang

2011

IEEE Trans. Dependable and Secure Comput.

118

110

View full text Add to dashboard Cite

show abstract

“…This is contrary to the principle of least privilege required in high assurance systems. The least privilege separation model builds on the traditional separation abstraction by extending the granularity of described elements to the subjects [9] and resources within the partition. An orthogonal flow control policy can then be expressed relative to subjects and resources, thus providing all of the functionality and protection of the traditional separation kernel, combined with a high level of confidence that the effects of subjects' activities may be minimized to their intended scope.…”

Section: A Least Privileged Separation Kernelmentioning

confidence: 99%

“…The kernel will have a static runtime resource configuration and its security policy regarding access to resources will be based on process/resource access bindings, via offline configuration (e.g., via an access matrix, such as are shown in Figures 1, 2 and 4). The static nature of resource allotment will provide predictable processing behavior, as well as limit the covert channels based on shared resource utilization [10]; [9]; [13]. Simple process synchronization primitives will also be provided, that can be implemented to be demonstrably free of covert channels (Reed, 1979).…”

Section: Trusted Computing Exemplar Projectmentioning

confidence: 99%

Least Privilege in Separation Kernels

Levin

Irvine

Nguyen

2006

Proceedings of the International Conference on Security and Cryptography

View full text Add to dashboard Cite

Abstract. We extend the separation kernel abstraction to represent the enforcement of the principle of least privilege. In addition to the inter-block flow control policy prescribed by the traditional separation kernel paradigm, we describe an orthogonal, finer-grained flow control policy by extending the protection of elements to subjects and resources, as well as blocks, within a partitioned system. We show how least privilege applied to the actions of subjects provides enhanced protection for secure systems.

show abstract

“…Total 12408 8704 We are doing a formal covert channel analysis using a new tcchniquc for automating the Shared-Resourcc Matrix approach [20] using code-level flow analysis tools.…”

mentioning

confidence: 99%

A VMM security kernel for the VAX architecture

Karger

Zurko

Bonin

et al. 1990

Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy

View full text Add to dashboard Cite

This paper describes the development of a virtual-machine monitor (VMM) security kernel for the VAX architecture. The paper particularly focuses on how the system's hardware, microcode, and software are aimed at meeting Aleffort has bccn primarily aimcd at identifying the differences and their cost in development effort and in kernel complexity.This paper dcscribes how the VAX security kcrncl meets its five InajOr goals:* Mcet all AI security rcquircments.levcl security requirements while maintaining the standard interfaces and applications of the VMS and ULTRIX-32 operating systems. The VAX security kcrncl supports multiple Run on commercial hardware without special modifications other than microcode changcs for virtualization.concurrent virtual machines on a single VAX system, providing isolation and controlled sharing of sensitive data. Rigorous engincering standards were applied during devclopmcnt to comply with the assurance requirements for verification and configuration management. The VAX security kcrncl has been dcveloped with a heavy emphasis on performance and on system managemcnt tools. The kcrnel pcrforms sufficicntly well that all of its development is now carricd out in virtual machines running on the kcrnel itself, rather than in a conventional time-sharing system.

show abstract

A Practical Approach to Identifying Storage and Timing Channels

Cited by 44 publications

References 9 publications

An Entropy-Based Approach to Detecting Covert Timing Channels

An Entropy-Based Approach to Detecting Covert Timing Channels

Least Privilege in Separation Kernels

A VMM security kernel for the VAX architecture

Contact Info

Product

Resources

About