English
Related papers

Related papers: Software Compartmentalization Trade-Offs with Hard…

200 papers

The widespread deployment of embedded systems in critical infrastructures, interconnected edge devices like autonomous drones, and smart industrial systems requires robust security measures. Compromised systems increase the risks of…

Emerging Technologies · Computer Science 2025-07-08 Donato Ferraro , Andrea Bastoni , Alexander Zuepke , Andrea Marongiu

Existing high-end embedded systems face frequent security attacks. Software compartmentalization is one technique to limit the attacks' effects to the compromised compartment and not the entire system. Unfortunately, the existing…

Memory corruption attacks have been prevalent in software for a long time. Some mitigation strategies against these attacks do exist, but they are not as far-reaching or as efficient as the CHERI architecture. CHERI uses capabilities to…

Cryptography and Security · Computer Science 2026-01-28 Dariy Guzairov , Alex Potanin , Stephen Kell , Alwen Tiu

Several open-source memory allocators have been ported to CHERI, a hardware capability platform. In this paper we examine the security and performance of these allocators when run under CheriBSD on Arm's experimental Morello platform. We…

Software Engineering · Computer Science 2023-05-16 Jacob Bramley , Dejice Jacob , Andrei Lascu , Jeremy Singer , Laurence Tratt

Software compartmentalization breaks down an application into compartments isolated from each other: an attacker taking over a compartment will be confined to it, limiting the damage they can cause to the rest of the application. Despite…

Cryptography and Security · Computer Science 2026-03-11 Jia Hu , Youcheng Sun , Pierre Olivier

Compartmentalization is good security-engineering practice. By breaking a large software system into mutually distrustful components that run with minimal privileges, restricting their interactions to conform to well-defined interfaces, we…

Cryptography and Security · Computer Science 2017-04-18 Yannis Juglaret , Catalin Hritcu , Arthur Azevedo de Amorim , Boris Eng , Benjamin C. Pierce

During our port of the MicroPython bytecode interpreter to the CHERI-based Arm Morello platform, we encountered a number of serious performance degradations. This paper explores several of these performance issues in detail, in each case we…

Programming Languages · Computer Science 2023-09-14 Duncan Lowther , Dejice Jacob , Jeremy Singer

Monolithic operating systems, where all kernel functionality resides in a single, shared address space, are the foundation of most mainstream computer systems. However, a single flaw, even in a non-essential part of the kernel (e.g., device…

Cryptography and Security · Computer Science 2024-04-16 Soo Yee Lim , Sidhartha Agrawal , Xueyuan Han , David Eyers , Dan O'Keeffe , Thomas Pasquier

There is growing interest in securing the hardware foundations software stacks build upon. However, before making any investment decision, software and hardware supply chain stakeholders require evidence from realistic, multiple long-term…

Cryptography and Security · Computer Science 2025-04-28 Shamal Faily

The monolithic nature of widely used commodity operating systems means that vulnerabilities in one software component potentially compromise the entire kernel. Formally verifying these systems, or redesigning them altogether as…

Cryptography and Security · Computer Science 2026-05-11 Shriram Raja , Zhiyuan Ruan , Richard West

MMU-less Linux variant lacks security because it does not have protection or isolation mechanisms. It also does not use MPUs as they do not fit with its software model because of the design drawbacks of MPUs (\ie coarse-grained protection…

Operating Systems · Computer Science 2024-01-19 Hesham Almatary , Alfredo Mazzinghi , Robert N. M. Watson

Decomposing large systems into smaller components with limited privileges has long been recognized as an effective means to minimize the impact of exploits. Despite historical roots, demonstrated benefits, and a plethora of research efforts…

Cryptography and Security · Computer Science 2024-10-14 Hugo Lefeuvre , Nathan Dautenhahn , David Chisnall , Pierre Olivier

Securing low-latency I/O in commodity systems forces a fundamental trade-off: rely on the kernel's high overhead mediated interface, or bypass it entirely, exposing sensitive hardware resources to userspace and creating new vulnerabilities.…

Cryptography and Security · Computer Science 2025-12-22 Friedrich Doku , Jonathan Laughton , Nick Wanninger , Peter Dinda

One single error can result in a total compromise of all security in today's large, monolithic software. Partitioning of software can help simplify code-review and verification, whereas isolated execution of software-components limits the…

Cryptography and Security · Computer Science 2017-06-16 Alexander Senier , Martin Beck , Thorsten Strufe

This paper compares six different parameter estimation methods for shared frailty models via a series of simulation studies. A shared frailty model is a survival model that incorporates a random effect term, where the frailties are common…

Methodology · Statistics 2023-11-21 Tingxuan Wu , Cindy Feng , Longhai Li

Many cluster management systems (CMSs) have been proposed to share a single cluster with multiple distributed computing systems. However, none of the existing approaches can handle distributed machine learning (ML) workloads given the…

Distributed, Parallel, and Cluster Computing · Computer Science 2017-06-19 Peng Sun , Yonggang Wen , Ta Nguyen Binh Duong , Shengen Yan

Real-time embedded platforms with resource constraints can take the benefits of mixed-criticality system where applications with different criticality-level share computational resources, with isolation in the temporal and spatial domain. A…

Systems and Control · Electrical Eng. & Systems 2022-08-31 Shibarchi Majumder , Jens Frederik Dalsgaard Nielsen , Thomas Bak

State machine replication protocols, like MultiPaxos and Raft, are a critical component of many distributed systems and databases. However, these protocols offer relatively low throughput due to several bottlenecked components. Numerous…

Distributed, Parallel, and Cluster Computing · Computer Science 2021-05-18 Michael Whittaker , Ailidani Ailijiang , Aleksey Charapko , Murat Demirbas , Neil Giridharan , Joseph M. Hellerstein , Heidi Howard , Ion Stoica , Adriana Szekeres

Memory-unsafe programming languages such as C and C++ are the preferred languages for systems programming, embedded systems, and performance-critical applications. The widespread use of these languages makes the risk of memory-related…

Cryptography and Security · Computer Science 2024-07-09 Sacha Ruchlejmer

Traditional techniques for synchronization are based on \emph{locking} that provides threads with exclusive access to shared data. \emph{Coarse-grained} locking typically forces threads to access large amounts of data sequentially and,…

Distributed, Parallel, and Cluster Computing · Computer Science 2015-11-06 Srivatsan Ravi
‹ Prev 1 2 3 10 Next ›