Operating system-style protections for language-based systems
| dc.contributor.advisor | Wallach, Dan S. | |
| dc.creator | Rudys, Algis | |
| dc.date.accessioned | 2009-06-03T21:09:46Z | |
| dc.date.available | 2009-06-03T21:09:46Z | |
| dc.date.issued | 2007 | |
| dc.description.abstract | Process-based separation has long been the prevalent model for providing security and isolation to protection domains in computer systems. However, the recent rise of component-based systems, which execute multiple plug-ins in the same process, has exposed a weakness of processes. At the same time, the recent spate of vulnerabilities in software has revealed the usefulness of language-based schemes to supplement the protections offered by processes. I propose a language-based protection model to replace processes as the basis for providing security and isolation. In this thesis, I present three different language-based mechanisms which add particular operating system-style protection semantics to the language. Soft termination provides a mechanism for guaranteed, safe termination of a task without interfering with other modules. Garbage collector memory accounting provides an accurate accounting of the memory used by each individual task running in the language-based system. Soft boundaries is a set of static analyses to verify that a specified task separation policy is followed by a particular codebase. These mechanisms provide the security and isolation that process-based separation provides, while tackling the problems of component-based architectures and malicious code head-on. | |
| dc.format.extent | 163 p. | en_US |
| dc.format.mimetype | application/pdf | |
| dc.identifier.callno | THESIS COMP.SCI. 2007 RUDYS | |
| dc.identifier.citation | Rudys, Algis. "Operating system-style protections for language-based systems." (2007) Diss., Rice University. <a href="https://hdl.handle.net/1911/20640">https://hdl.handle.net/1911/20640</a>. | |
| dc.identifier.uri | https://hdl.handle.net/1911/20640 | |
| dc.language.iso | eng | |
| dc.rights | Copyright is held by the author, unless otherwise indicated. Permission to reuse, publish, or reproduce the work beyond the bounds of fair use or other exemptions to copyright law must be obtained from the copyright holder. | |
| dc.subject | Computer science | |
| dc.title | Operating system-style protections for language-based systems | |
| dc.type | Thesis | |
| dc.type.material | Text | |
| thesis.degree.department | Computer Science | |
| thesis.degree.discipline | Engineering | |
| thesis.degree.grantor | Rice University | |
| thesis.degree.level | Doctoral | |
| thesis.degree.name | Doctor of Philosophy |
Files
Original bundle
1 - 1 of 1