genode os security by design
play

Genode - OS Security By Design Dr.-Ing. Norman Feske < - PowerPoint PPT Presentation

Apr 05, 2024 •580 likes •920 views

Genode - OS Security By Design Dr.-Ing. Norman Feske < norman.feske@genode-labs.com > Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 2 Outline 1. Introduction 2.

  1. Genode - OS Security By Design Dr.-Ing. Norman Feske < norman.feske@genode-labs.com >

  2. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 2

  3. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 3

  4. Universal Truths Assurance Scalability Accountability Utilization Security Ease of use Genode - OS Security By Design 4

  5. Problem: Complexity Today’s commodity OSes Exceedingly complex trusted computing base (TCB) TCB of an application on Linux: Kernel + loaded kernel modules Daemons X Server + window manager Desktop environment All running processes of the user → User credentials are exposed to millions of lines of code Genode - OS Security By Design 5

  6. Problem: Complexity (II) Implications: High likelihood for bugs (need for frequent security updates) Huge attack surface for directed attacks Zero-day exploits Genode - OS Security By Design 6

  7. Universal Truths Assurance Scalability Accountability Utilization Security Ease of use Genode - OS Security By Design 7

  8. Problem: Resource management Pretension of unlimited resources Lack of accounting → Largely indeterministic behavior → Need for complex heuristics, schedulers Genode - OS Security By Design 8

  9. Universal Truths Assurance Scalability Accountability Utilization Security Ease of use Genode - OS Security By Design 9

  10. Key technologies Microkernels Componentization, kernelization Capability-based security Virtualization ...but how to compose those? Genode - OS Security By Design 10

  11. Genode architecture → Application-specific TCB Genode - OS Security By Design 11

  12. Combined with virtualization Genode - OS Security By Design 12

  13. Components Genode - OS Security By Design 13

  14. Components Genode - OS Security By Design 14

  15. Components Genode - OS Security By Design 15

  16. Components Genode - OS Security By Design 16

  17. Components Genode - OS Security By Design 17

  18. Components Genode - OS Security By Design 18

  19. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 19

  20. Object capabilities Delegation of authority between components Each component lives in a virtual environment A component that possesses a capability can ◮ Use it (invoke) ◮ Delegate it to acquainted components Genode - OS Security By Design 20

  21. Recursive system structure Genode - OS Security By Design 21

  22. Service announcement Genode - OS Security By Design 22

  23. Session creation Genode - OS Security By Design 23

  24. Session creation Genode - OS Security By Design 24

  25. Resource management Explicit assignment of physical resources to components Genode - OS Security By Design 25

  26. Resource management (II) Resources can be attached to sessions Genode - OS Security By Design 26

  27. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 27

  28. Faithful Virtualization Unmodified Guest OS Kernel virtual virtual virtual CPU RAM device Resource Device VMM Multiplexer Driver Init Core User Mode NOVA Hypervisor Privileged Mode Genode - OS Security By Design 28

  29. OS-level Virtualization Genode - OS Security By Design 29

  30. Rich applications Testnit Nitpicker Virtual Launchpad Arora Framebuffer GUI Web Browser TCP/IP Init Nitpicker Loader Menu GUI Init Genode - OS Security By Design 30

  31. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 31

  32. Current Topics Eating our own dog food ◮ Noux (GCC, VIM, bash, coreutils...) ◮ Wireless networking Capability-based user interface seL4 kernel as base platform ARM Virtualization Package management Genode - OS Security By Design 32

  33. Thank you Genode OS Framework http://genode.org Genode Labs GmbH http://www.genode-labs.com Source code at GitHub http://github.com/genodelabs/genode Genode - OS Security By Design 33

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Introducing kernel-agnostic Genode executables Norman Feske &lt; norman.feske@genode-labs.com

Introducing kernel-agnostic Genode executables Norman Feske &lt; norman.feske@genode-labs.com

Introducing kernel-agnostic Genode executables Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Kernel diversity - Whats the appeal? 2. Bridging the gap between kernels Notion of components Raising the level of abstraction of

1.28k views • 90 slides
Microkernel-based Systems Summer School 2013: Genode OS Framework Norman Feske &lt;

Microkernel-based Systems Summer School 2013: Genode OS Framework Norman Feske &lt;

Microkernel-based Systems Summer School 2013: Genode OS Framework Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Why do we need another operating system? 2. Genode entering the picture 3. Architectural Principles 4. Core -

1.28k views • 99 slides
Reaching puberty: How Genode is becoming a general-purpose OS Norman Feske &lt;

Reaching puberty: How Genode is becoming a general-purpose OS Norman Feske &lt;

Reaching puberty: How Genode is becoming a general-purpose OS Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Background 2. Noux runtime for Unix software 3. Challenges of dynamic system composition 4. Fundamental features 5.

618 views • 42 slides
Live-sculpting a Genode-based operating system Norman Feske &lt; norman.feske@genode-labs.com

Live-sculpting a Genode-based operating system Norman Feske &lt; norman.feske@genode-labs.com

Live-sculpting a Genode-based operating system Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Base system 2. Storage, networking 3. Extending the system 4. Road Map for 2018 Live-sculpting a Genode-based operating system 2

534 views • 32 slides
Genode as general-purpose OS progress report and demonstration Norman Feske &lt;

Genode as general-purpose OS progress report and demonstration Norman Feske &lt;

Genode as general-purpose OS progress report and demonstration Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Introduction 2. The long way towards general-purpose computing Fundamentals Functionality Resource utilization

739 views • 39 slides
A Brief Survey through Genodes ARMv8 Playground Stefan Kalkowski &lt;

A Brief Survey through Genodes ARMv8 Playground Stefan Kalkowski &lt;

A Brief Survey through Genodes ARMv8 Playground Stefan Kalkowski &lt; stefan.kalkowski@genode-labs.com &gt; Outline 1. Introduction 2. Genode Embedded Prospects Kiosk System IoT Gateway Industry control system 3. Roadmap 2020 A Brief

685 views • 14 slides
What Security can learn from Design Douglas Wilson Nguyet Vuong Security Person, Design

What Security can learn from Design Douglas Wilson Nguyet Vuong Security Person, Design

What Security can learn from Design Douglas Wilson Nguyet Vuong Security Person, Design Person, Formerly at Uptycs, Mandiant VP of Design at Civil Media Company @dallendoug @nguyetv INTRO / Who We Are We are Nguyet &amp; Doug Collectively,

634 views • 39 slides
The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director

The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director

The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director Global Privacy &amp; Security by Design Centre Technion Summer School on Cyber Security Haifa, Israel September 9, 2020 Lets Dispel The Myths

929 views • 55 slides
CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012

CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012

CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012 1 Content of Todays Lecture Summary and Wrap up on Security Terminology The Fundamental Dilemma of Security Five Design Principles

801 views • 25 slides
Genode Components Performance Penalty And Challenges FOSDEM Micro-kernel Devroom, 04/02/17

Genode Components Performance Penalty And Challenges FOSDEM Micro-kernel Devroom, 04/02/17

Dual Execution and Comparison For Genode Components Performance Penalty And Challenges FOSDEM Micro-kernel Devroom, 04/02/17 Parfait T okponnon Marc Lobelle mahoukpego.tokponnon@uclouvain.be marc.lobelle@uclouvain.be Outline 2

406 views • 29 slides
What Security can learn from Design (An Intro to Design Thinking) Douglas Wilson Nguyet Vuong

What Security can learn from Design (An Intro to Design Thinking) Douglas Wilson Nguyet Vuong

What Security can learn from Design (An Intro to Design Thinking) Douglas Wilson Nguyet Vuong Security Person, Design Person, Formerly at Uptycs, Mandiant VP of Design at Civil Media Company @dallendoug @nguyetv We are Nguyet &amp; Doug

1.42k views • 45 slides
Design for Security Serena Chen | @Sereeena | OReilly Velocity 2018 Usability Security

Design for Security Serena Chen | @Sereeena | OReilly Velocity 2018 Usability Security

Design for Security Serena Chen | @Sereeena | OReilly Velocity 2018 Usability Security Good user experience design and good security cannot exist without each other Everyone deserves to be secure without being experts We need to

1.34k views • 112 slides
Transplantation of VirtualBox to the NOVA microhypervisor Norman Feske &lt;

Transplantation of VirtualBox to the NOVA microhypervisor Norman Feske &lt;

Transplantation of VirtualBox to the NOVA microhypervisor Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. VirtualBox 2. NOVA microhypervisor and Genode 3. Steps 4. Demo + Outlook 5. War stories Transplantation of VirtualBox

963 views • 40 slides
Design and I m plem entation of GEO Grid Design and I m plem entation of GEO Grid Security

Design and I m plem entation of GEO Grid Design and I m plem entation of GEO Grid Security

www.geogrid.org Design and I m plem entation of GEO Grid Design and I m plem entation of GEO Grid Security Security Yoshio Tanaka National Institute of Advanced Industrial Science and Technology (AIST) Japan 1 www.geogrid.org W hat is the

463 views • 18 slides
GPU-resource multiplexing in component-based systems Sebastian Sumpf &lt;

GPU-resource multiplexing in component-based systems Sebastian Sumpf &lt;

GPU-resource multiplexing in component-based systems Sebastian Sumpf &lt; sebastian.sumpf@genode-labs.com &gt; Josef Sntgen &lt; josef.soentgen@genode-labs.com &gt; Outline 1. Motivation 2. State of the art 3. GPU resource multiplexing in

689 views • 35 slides
OPG Leadership Series Solaris Security Design Kickoff, Considerations September, 2005 Casper

OPG Leadership Series Solaris Security Design Kickoff, Considerations September, 2005 Casper

OPG Leadership Series Solaris Security Design Kickoff, Considerations September, 2005 Casper Dik Sun Microsystems, Inc. Solaris Security Design Principles Or how ten years changed my perspective on security History of fixes and hardening

581 views • 37 slides
SYMBOLIC LOGIC UNIT 1: INTRODUCTION TO LOGIC What is an argument? An argument is the public,

SYMBOLIC LOGIC UNIT 1: INTRODUCTION TO LOGIC What is an argument? An argument is the public,

SYMBOLIC LOGIC UNIT 1: INTRODUCTION TO LOGIC What is an argument? An argument is the public, linguistic expression of reasoning. An argument is (or could be rephrased as) a set of sentences consisting of one or more premises , which contain

670 views • 35 slides
Wheelchair Mounted Dog Treat Dispenser Team Members : Zainab Abdullahi,Adam Dost, Gage Moore,

Wheelchair Mounted Dog Treat Dispenser Team Members : Zainab Abdullahi,Adam Dost, Gage Moore,

Wheelchair Mounted Dog Treat Dispenser Team Members : Zainab Abdullahi,Adam Dost, Gage Moore, Jachan Shrestha,Robby Wignall Faculty Supervisors: Dr.Nathalia Peixoto, and Dr.Kristine Neuber 1 Overview About us Introduction Purpose and

1.19k views • 76 slides
WE WELC LCOME OME Shelter Friends 2015 Member Meeting February 21, 2015 Who are we? Shelter

WE WELC LCOME OME Shelter Friends 2015 Member Meeting February 21, 2015 Who are we? Shelter

WE WELC LCOME OME Shelter Friends 2015 Member Meeting February 21, 2015 Who are we? Shelter Friends is a non-profit, all volunteer, organization that supports the Josephine County Animal Shelter. We support the adoptable animals at the

414 views • 17 slides
Search Engines Session 5 INST 301 Introduction to Information Science Washington Post (2007)

Search Engines Session 5 INST 301 Introduction to Information Science Washington Post (2007)

Search Engines Session 5 INST 301 Introduction to Information Science Washington Post (2007) so what is a Search Engine? Query the cat food D2 D1 Natural cats eat organic cat canned food. food available the cat food at petco.com is

478 views • 25 slides
CCT1343, Week 3 SQL Queries Using Multiple Tables Yuri Takhteyev University of Toronto January

CCT1343, Week 3 SQL Queries Using Multiple Tables Yuri Takhteyev University of Toronto January

CCT1343, Week 3 SQL Queries Using Multiple Tables Yuri Takhteyev University of Toronto January 17, 2011 This presentation is licensed under Creative Commons Attribution License, v. 3.0. To view a copy of this license, visit

1.35k views • 86 slides
Translating Executable Software Models with micca Andrew Mangogna Model Realization 24th Annual

Translating Executable Software Models with micca Andrew Mangogna Model Realization 24th Annual

Translating Executable Software Models with micca Andrew Mangogna Model Realization 24th Annual Tcl/Tk Conference October 16-20, 2017 Houston, TX Introduction Micca is a program to aid in translating executable software models

774 views • 20 slides
1 Survey the audience on their IT or Engineering department size. Where are they in the

1 Survey the audience on their IT or Engineering department size. Where are they in the

1 Survey the audience on their IT or Engineering department size. Where are they in the Agile adoption cycle? 2 3 Silos with Architecture, Analysis, Application Development, Release and QA and Infrastructure 4 5 6 June 2011 we

669 views • 28 slides
Defining Searching Sessions on Web Session Engines Jim Jansen, College of Information Sciences and

Defining Searching Sessions on Web Session Engines Jim Jansen, College of Information Sciences and

College of Information Sciences College of Information Sciences and Technology Technology and Defining Searching Sessions on Web Session Engines Jim Jansen, College of Information Sciences and Technology, The Pennsylvania State University,

681 views • 15 slides

More recommend