Title :
No Principal Too Small: Memory Access Control for Fine-Grained Protection Domains
Author :
Leontie, Eugen ; Bloom, Gedare ; Narahari, Bhagirath ; Simha, Rahul
Author_Institution :
Dept. of Comput. Sci., George Washington Univ., Washington, DC, USA
Abstract :
Modern programs comprise multiple threads of execution inside a single principal -- the process -- with a single protection domain, usually a page table. We propose a hardware enforced, fine-grained memory protection mechanism to divide the process into smaller principals and multiple protection domains. Our approach supports modern software engineering better than traditional processes by enabling developers to align software components with protection mechanisms. We implemented our architecture using a cycle-accurate simulator of a complex out-of-order pipeline and evaluate our solution using open-source benchmarks and synthetic micro benchmarks designed specifically to stress our system.
Keywords :
random-access storage; software engineering; complex out-of-order pipeline; cycle-accurate simulator; fine-grained memory protection mechanism; memory access control; modern software engineering; open-source benchmarks; page table; single protection domain; software components; synthetic microbenchmarks; Containers; Context; Permission; Pipelines; Software; Switches; Memory protection; architectural support for security; fine-grained protection; isolation; software security;
Conference_Titel :
Digital System Design (DSD), 2012 15th Euromicro Conference on
Conference_Location :
Izmir
Print_ISBN :
978-1-4673-2498-4
DOI :
10.1109/DSD.2012.89
