mmapx

Achermann, Reto; Cock, David; Haecki, Roni; Hossle, Nora; Humbel, Lukas; Roscoe, Timothy; Schwyn, Daniel

doi:10.1145/3458336.3465273

Cited by 6 publications

(1 citation statement)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Decoding nets [2,3] already provide a well-studied formal model of the interaction of memory-mapped address spaces on modern hardware, which enables this kind of accesscontrol reasoning within both Linux [1] and other, less traditional OSes. Decoding nets describe a system's address mapping hardware as a directed graph, where nodes are distinct address spaces and edges are address translations between them.…”

Section: Modelling a De Facto Osmentioning

confidence: 99%

Putting out the hardware dumpster fire

Fiedler,

Schwyn,

Gierczak-Galle

et al. 2023

Proceedings of the 19th Workshop on Hot Topics in Operating Systems

Self Cite

View full text Add to dashboard Cite

The immense hardware complexity of modern computers, both mobile phones and datacenter servers, is a seemingly endless source of bugs and vulnerabilities in system software.Classical OSes cannot address this, since they only run on a small subset of the machine. The issue is interactions within the entire ensemble of firmware blobs, co-processors, and CPUs that we term the de facto OS. The current "whaca-mole" approach will not solve this problem, nor will cleanslate redesign: it is simply not possible to replace some firmware components and the engineering effort is too great.Our response, instead, is to build a high-level model of exactly what a given real hardware and software platform consists of, and captures for the first time the necessary and assumed trust relationships between the software contexts executing on different components (CPUs, devices, etc.).This principled but pragmatic approach allows us to make rigorous statements about the hodgepodge of soft-and firmware at the heart of modern computers. We expect these statements to be, at first, depressingly weak, but it may be the only way to identify changes that provably increase the trustworthiness of a real system, and quantify the benefits of these changes. CCS CONCEPTS• Software and its engineering → Operating systems; Formal methods.

show abstract

Section: Modelling a De Facto Osmentioning

confidence: 99%

Putting out the hardware dumpster fire

Fiedler,

Schwyn,

Gierczak-Galle

et al. 2023

Proceedings of the 19th Workshop on Hot Topics in Operating Systems

Self Cite

View full text Add to dashboard Cite

show abstract

CRONUS: Fault-isolated, Secure and High-performance Heterogeneous Computing for Trusted Execution Environment

Jiang

Shen

et al. 2022

2022 55th IEEE/ACM International Symposium on Microarchitecture (MICRO)

View full text Add to dashboard Cite

Generating correct initial page tables from formal hardware descriptions

Achermann

Cock

Haecki

et al. 2021

Proceedings of the 11th Workshop on Programming Languages and Operating Systems

Self Cite

View full text Add to dashboard Cite

Modern hardware platforms are increasingly complex and heterogeneous. System software uses a hodgepodge of different mechanisms and representations to express the memory topology of the target platform. Considerable maintenance effort is required to keep them in sync while often sharing is impossible due to hard-coded values. Incorrect platformspecific values in the hardware initialization sequence can lead to security critical and hard-to-find bugs because of misconfigured translation hardware, inaccessible devices, or the use of bad pointers.We present a better way for system software to express and initialize memory hardware. We adopt an existing, powerful hardware description language, and efficiently compile it to generate correct initial page tables and memory maps for OS kernels and firmware from a single system description. We evaluate our system on multiple architectures and platforms, and demonstrate that we can use the generated data structures to successfully initialize translation hardware, devices, memory maps, and allocators enabling easy support of new hardware platforms.

show abstract

mmapx

Cited by 6 publications

References 25 publications

Putting out the hardware dumpster fire

Putting out the hardware dumpster fire

CRONUS: Fault-isolated, Secure and High-performance Heterogeneous Computing for Trusted Execution Environment

Generating correct initial page tables from formal hardware descriptions

Contact Info

Product

Resources

About