ProQuest Document View - Policy management and decentralized debugging in the Asbestos operating system

ProQuest^® Dissertations & Theses

The world's most comprehensive collection of dissertations and theses. Learn more...

Policy management and decentralized debugging in the Asbestos operating system

by Efstatholpoulos, Petros, Ph.D., UNIVERSITY OF CALIFORNIA, LOS ANGELES, 2008, 144 pages; 3354409

Abstract:

The continuing frequency and seriousness of security incidents underlines the importance of application security. We have developed Asbestos , a novel operating system focusing on security that uses Asbestos labels to implement decentralized information flow control (DIFC). Using DIFC Asbestos is able to track information flow and contain the effects of malicious or poorly implemented applications. This way, Asbestos applications can be made significantly more secure than applications built with conventional operating systems abstractions, since application security is preserved even in cases where large parts of the applications are compromised. However, our development experience in Asbestos applications showed that achieving Asbestos's benefits was simply too difficult. We believe that an important reason for this problem is Asbestos's challenging programming model.

Based on our development experience for Asbestos, we attempt to improve its programming model. We identify and investigate two important security policy management problems that are critical for Asbestos development: security policy specification and debugging .

First we present a policy description language that can be used to facilitate application policy management. Using our policy language developers are able to describe application policy in terms of pair-wise communication rules between application components--an interface that is far more compact. intentionally simple and human-friendly than Asbestos labels. Our policy language parser is able to translate these high-level policy descriptions to equivalent Asbestos label configurations. Furthermore, developers can use the policy language to describe important run-time application properties that are required to automatically instantiate the application policy using our policy launcher .

Secondly, we propose a new mechanism to facilitate security policy debugging in Asbestos, namely debug domains . Performing system state inspection--e.g. during debugging--would, if unchecked, leak information from a compartment and violate information flow. Debug domains implement a decentralized debugging primitive that adheres to the information flow policies enforced by Asbestos.

We evaluate our policy language by using it to describe policies from major DIFC systems. We also use synthetic tests to evaluate the effectiveness and performance overhead of debug domains. Our results suggest that our proposed mechanisms are able to assist developers with reasonable overhead, can be beneficial to DIFC systems other than Asbestos, and improve the DIFC programming model.

Advisor:	Kohler, Eddie
School:	UNIVERSITY OF CALIFORNIA, LOS ANGELES
Source:	DAI-B 70/04, p. , Oct 2009
Source Type:	Ph.D.
Subjects:	Computer science
Publication Number:	3354409

Access the complete dissertation:

» Find an electronic copy at your library.

Use the link below to access a full citation record of this graduate work:

http://gateway.proquest.com/openurl%3furl_ver=Z39.88-2004%26res_dat=xri:pqdiss%26rft_val_fmt=info:ofi/fmt:kev:mtx:dissertation%26rft_dat=xri:pqdiss:3354409

If your library subscribes to the ProQuest Dissertations & Theses (PQDT) database, you may be entitled to a free electronic version of this graduate work. If not, you will have the option to purchase one, and access a 24 page preview for free (if available).

About ProQuest Dissertations & Theses
With over 2.3 million records, the ProQuest Dissertations & Theses (PQDT) database is the most comprehensive collection of dissertations and theses in the world. It is the database of record for graduate research.

The database includes citations of graduate works ranging from the first U.S. dissertation, accepted in 1861, to those accepted as recently as last semester. Of the 2.3 million graduate works included in the database, ProQuest offers more than 1.9 million in full text formats. Of those, over 860,000 are available in PDF format. More than 60,000 dissertations and theses are added to the database each year.

If you have questions, please feel free to visit the ProQuest Web site - http://www.il.proquest.com - or call ProQuest Hotline Customer Support at 1-800-521-3042.