Separation microkernel security studies and its formal verification related work
A separation kernel provides temporal and spatial separation among applications or partitions. This type of kernels ensure that there are no unwanted channels for information flows between partitions. XtratuM, an open source separation microkernel, is implemented based on ARINC 653 standard for safe...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
2016
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/10356/66712 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-66712 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-667122023-03-03T20:42:39Z Separation microkernel security studies and its formal verification related work Lu, Shengliang Liu Yang School of Computer Engineering DRNTU::Engineering A separation kernel provides temporal and spatial separation among applications or partitions. This type of kernels ensure that there are no unwanted channels for information flows between partitions. XtratuM, an open source separation microkernel, is implemented based on ARINC 653 standard for safety-critical system. In order to guarantee that it is free of bugs and is following security policies, completely formal verification on XtratuM is conducted by Securify team. During reasoning about information flow described in ARINC 653, some covert channels are found by Securify Team. In this paper, a successful demonstration on the existence of covert channel in XtratuM is provided, followed by improvement suggestions on fixing the covert channel. With the objective of modeling and hence formally verifying XtratuM, in-depth analysis of its source code and verification related work are discussed in this report. Bachelor of Engineering (Computer Engineering) 2016-04-21T08:43:36Z 2016-04-21T08:43:36Z 2016 Final Year Project (FYP) http://hdl.handle.net/10356/66712 en Nanyang Technological University 45 p. application/pdf |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
NTU Library |
| collection |
DR-NTU |
| language |
English |
| topic |
DRNTU::Engineering |
| spellingShingle |
DRNTU::Engineering Lu, Shengliang Separation microkernel security studies and its formal verification related work |
| description |
A separation kernel provides temporal and spatial separation among applications or partitions. This type of kernels ensure that there are no unwanted channels for information flows between partitions. XtratuM, an open source separation microkernel, is implemented based on ARINC 653 standard for safety-critical system. In order to guarantee that it is free of bugs and is following security policies, completely formal verification on XtratuM is conducted by Securify team. During reasoning about information flow described in ARINC 653, some covert channels are found by Securify Team. In this paper, a successful demonstration on the existence of covert channel in XtratuM is provided, followed by improvement suggestions on fixing the covert channel. With the objective of modeling and hence formally verifying XtratuM, in-depth analysis of its source code and verification related work are discussed in this report. |
| author2 |
Liu Yang |
| author_facet |
Liu Yang Lu, Shengliang |
| format |
Final Year Project |
| author |
Lu, Shengliang |
| author_sort |
Lu, Shengliang |
| title |
Separation microkernel security studies and its formal verification related work |
| title_short |
Separation microkernel security studies and its formal verification related work |
| title_full |
Separation microkernel security studies and its formal verification related work |
| title_fullStr |
Separation microkernel security studies and its formal verification related work |
| title_full_unstemmed |
Separation microkernel security studies and its formal verification related work |
| title_sort |
separation microkernel security studies and its formal verification related work |
| publishDate |
2016 |
| url |
http://hdl.handle.net/10356/66712 |
| _version_ |
1759857705921544192 |