Title :
A VMM security kernel for the VAX architecture
Author :
Karger, Paul A. ; Zurko, Mary Ellen ; Bonin, Douglas W. ; Mason, Andrew H. ; Kahn, Clifford E.
Author_Institution :
Digital Equipment Corp., Boxborough, MA, USA
Abstract :
The development of a virtual-machine monitor (VMM) security kernel for the VAX architecture is described. Particular focus is on how the system´s hardware, microcode, and software are aimed at meeting A1-level security requirements while maintaining the standard interfaces and applications of the VMS and ULTRIX-32 operating systems. The VAX security kernel supports multiple concurrent virtual machines on a single VAX system, providing isolation and controlled sharing of sensitive data. Rigorous engineering standards were applied during development to comply with the assurance requirements for verification and configuration management. The VAX security kernel was developed with a heavy emphasis on performance and on system management tools. The kernel performs sufficiently well that all of its development can be now carried out in virtual machines running on the kernel itself, rather than in a conventional time-sharing system
Keywords :
DEC computers; computer architecture; security of data; supervisory programs; virtual machines; A1-level security requirements; ULTRIX-32; VAX architecture; VMM security kernel; VMS; configuration management; engineering standards; interfaces; isolation; microcode; multiple concurrent virtual machines; operating systems; performance; sensitive data sharing; system management tools; verification; virtual-machine monitor; Application software; Computer architecture; Data security; Hardware; Kernel; Operating systems; Software maintenance; Software standards; Virtual machining; Voice mail;
Conference_Titel :
Research in Security and Privacy, 1990. Proceedings., 1990 IEEE Computer Society Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-2060-9
DOI :
10.1109/RISP.1990.63834
