The case for crypto protocol awareness inside the OS kernel

Burnside, Matthew; Keromytis, Angelos D.

doi:10.1145/1055626.1055635

Cited by 2 publications

(2 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [12], performance of a TLS Web server is improved by an operating system extension implemented in OpenBSD that reduces system calls, context switching, and data copying. The bare PC implementation also eliminates system calls and OS-related overhead, and allows all protocol layers to manipulate a single copy of the data (i.e., with zero data copying), but there is no OS present.…”

Section: Related Workmentioning

confidence: 99%

“…Thu connection to port 443 is established (re connection as specified in [9]), a TLS Task the TLS Task Stack (7) and inserted into a This TLS Task, which runs when it is sched Task, is only used for handshake mess handshake is completed, the task will be ret pool (7). The entire TLS handshake is mo Transition Diagram (STD) (12), which is Object (10). This object contains the ne perform all TLS operations.…”

Section: B Tls Web Server Architecturementioning

confidence: 99%

See 1 more Smart Citation

Implementing the TLS Protocol on a Bare PC

Emdadi

Karne

Wijesinha

2010

2010 Second International Conference on Computer Research and Development

View full text Add to dashboard Cite

A bare PC is an ordinary computer that runs applications without an operating system (OS). It thus provides immunity from attacks that target specific OS vulnerabilities while eliminating the OS overhead in a conventional system. We describe a novel implementation of TLS that runs on a bare PC. The TLS implementation differs from a conventional TLS implementation in that it is included within a bare PC application that manages its own CPU tasks, directly interfaces to the hardware, and communicates with network protocols without using a standard socket interface. Furthermore, the unique software architecture of a bare PC enables the TLS, TCP, and application protocols to be intertwined, thereby reducing the communication overhead compared to that of a conventional system. As an example, we give details of the internal architecture of a bare PC TLS Web server. We then illustrate intertwining of the TLS, TCP, and HTTP protocols. In particular, we show how a state transition model that represents events and actions in the TLS Web server is used to develop the intertwined protocol code. We also discuss the testing methodology, note some challenges with respect to implementing TLS on a bare PC, and outline the measures taken to address them.

show abstract

Section: Related Workmentioning

confidence: 99%