genode os security by design
play

Genode - OS Security By Design Dr.-Ing. Norman Feske < - PowerPoint PPT Presentation

Apr 05, 2024 •580 likes •920 views

Genode - OS Security By Design Dr.-Ing. Norman Feske < norman.feske@genode-labs.com > Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 2 Outline 1. Introduction 2.

  1. Genode - OS Security By Design Dr.-Ing. Norman Feske < norman.feske@genode-labs.com >

  2. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 2

  3. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 3

  4. Universal Truths Assurance Scalability Accountability Utilization Security Ease of use Genode - OS Security By Design 4

  5. Problem: Complexity Today’s commodity OSes Exceedingly complex trusted computing base (TCB) TCB of an application on Linux: Kernel + loaded kernel modules Daemons X Server + window manager Desktop environment All running processes of the user → User credentials are exposed to millions of lines of code Genode - OS Security By Design 5

  6. Problem: Complexity (II) Implications: High likelihood for bugs (need for frequent security updates) Huge attack surface for directed attacks Zero-day exploits Genode - OS Security By Design 6

  7. Universal Truths Assurance Scalability Accountability Utilization Security Ease of use Genode - OS Security By Design 7

  8. Problem: Resource management Pretension of unlimited resources Lack of accounting → Largely indeterministic behavior → Need for complex heuristics, schedulers Genode - OS Security By Design 8

  9. Universal Truths Assurance Scalability Accountability Utilization Security Ease of use Genode - OS Security By Design 9

  10. Key technologies Microkernels Componentization, kernelization Capability-based security Virtualization ...but how to compose those? Genode - OS Security By Design 10

  11. Genode architecture → Application-specific TCB Genode - OS Security By Design 11

  12. Combined with virtualization Genode - OS Security By Design 12

  13. Components Genode - OS Security By Design 13

  14. Components Genode - OS Security By Design 14

  15. Components Genode - OS Security By Design 15

  16. Components Genode - OS Security By Design 16

  17. Components Genode - OS Security By Design 17

  18. Components Genode - OS Security By Design 18

  19. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 19

  20. Object capabilities Delegation of authority between components Each component lives in a virtual environment A component that possesses a capability can ◮ Use it (invoke) ◮ Delegate it to acquainted components Genode - OS Security By Design 20

  21. Recursive system structure Genode - OS Security By Design 21

  22. Service announcement Genode - OS Security By Design 22

  23. Session creation Genode - OS Security By Design 23

  24. Session creation Genode - OS Security By Design 24

  25. Resource management Explicit assignment of physical resources to components Genode - OS Security By Design 25

  26. Resource management (II) Resources can be attached to sessions Genode - OS Security By Design 26

  27. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 27

  28. Faithful Virtualization Unmodified Guest OS Kernel virtual virtual virtual CPU RAM device Resource Device VMM Multiplexer Driver Init Core User Mode NOVA Hypervisor Privileged Mode Genode - OS Security By Design 28

  29. OS-level Virtualization Genode - OS Security By Design 29

  30. Rich applications Testnit Nitpicker Virtual Launchpad Arora Framebuffer GUI Web Browser TCP/IP Init Nitpicker Loader Menu GUI Init Genode - OS Security By Design 30

  31. Outline 1. Introduction 2. Architectural Principles 3. Showcases 4. Current Topics Genode - OS Security By Design 31

  32. Current Topics Eating our own dog food ◮ Noux (GCC, VIM, bash, coreutils...) ◮ Wireless networking Capability-based user interface seL4 kernel as base platform ARM Virtualization Package management Genode - OS Security By Design 32

  33. Thank you Genode OS Framework http://genode.org Genode Labs GmbH http://www.genode-labs.com Source code at GitHub http://github.com/genodelabs/genode Genode - OS Security By Design 33

Recommend

Introducing kernel-agnostic Genode executables Norman Feske &lt; norman.feske@genode-labs.com

Introducing kernel-agnostic Genode executables Norman Feske &lt; norman.feske@genode-labs.com

Introducing kernel-agnostic Genode executables Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Kernel diversity - Whats the appeal? 2. Bridging the gap between kernels Notion of components Raising the level of abstraction of

1.28k views • 90 slides
Microkernel-based Systems Summer School 2013: Genode OS Framework Norman Feske &lt;

Microkernel-based Systems Summer School 2013: Genode OS Framework Norman Feske &lt;

Microkernel-based Systems Summer School 2013: Genode OS Framework Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Why do we need another operating system? 2. Genode entering the picture 3. Architectural Principles 4. Core -

1.28k views • 99 slides
Reaching puberty: How Genode is becoming a general-purpose OS Norman Feske &lt;

Reaching puberty: How Genode is becoming a general-purpose OS Norman Feske &lt;

Reaching puberty: How Genode is becoming a general-purpose OS Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Background 2. Noux runtime for Unix software 3. Challenges of dynamic system composition 4. Fundamental features 5.

618 views • 42 slides
Live-sculpting a Genode-based operating system Norman Feske &lt; norman.feske@genode-labs.com

Live-sculpting a Genode-based operating system Norman Feske &lt; norman.feske@genode-labs.com

Live-sculpting a Genode-based operating system Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Base system 2. Storage, networking 3. Extending the system 4. Road Map for 2018 Live-sculpting a Genode-based operating system 2

534 views • 32 slides
Genode as general-purpose OS progress report and demonstration Norman Feske &lt;

Genode as general-purpose OS progress report and demonstration Norman Feske &lt;

Genode as general-purpose OS progress report and demonstration Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. Introduction 2. The long way towards general-purpose computing Fundamentals Functionality Resource utilization

739 views • 39 slides
A Brief Survey through Genodes ARMv8 Playground Stefan Kalkowski &lt;

A Brief Survey through Genodes ARMv8 Playground Stefan Kalkowski &lt;

A Brief Survey through Genodes ARMv8 Playground Stefan Kalkowski &lt; stefan.kalkowski@genode-labs.com &gt; Outline 1. Introduction 2. Genode Embedded Prospects Kiosk System IoT Gateway Industry control system 3. Roadmap 2020 A Brief

685 views • 14 slides
What Security can learn from Design Douglas Wilson Nguyet Vuong Security Person, Design

What Security can learn from Design Douglas Wilson Nguyet Vuong Security Person, Design

What Security can learn from Design Douglas Wilson Nguyet Vuong Security Person, Design Person, Formerly at Uptycs, Mandiant VP of Design at Civil Media Company @dallendoug @nguyetv INTRO / Who We Are We are Nguyet &amp; Doug Collectively,

634 views • 39 slides
The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director

The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director

The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director Global Privacy &amp; Security by Design Centre Technion Summer School on Cyber Security Haifa, Israel September 9, 2020 Lets Dispel The Myths

929 views • 55 slides
CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012

CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012

CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012 1 Content of Todays Lecture Summary and Wrap up on Security Terminology The Fundamental Dilemma of Security Five Design Principles

801 views • 25 slides
Genode Components Performance Penalty And Challenges FOSDEM Micro-kernel Devroom, 04/02/17

Genode Components Performance Penalty And Challenges FOSDEM Micro-kernel Devroom, 04/02/17

Dual Execution and Comparison For Genode Components Performance Penalty And Challenges FOSDEM Micro-kernel Devroom, 04/02/17 Parfait T okponnon Marc Lobelle mahoukpego.tokponnon@uclouvain.be marc.lobelle@uclouvain.be Outline 2

406 views • 29 slides
What Security can learn from Design (An Intro to Design Thinking) Douglas Wilson Nguyet Vuong

What Security can learn from Design (An Intro to Design Thinking) Douglas Wilson Nguyet Vuong

What Security can learn from Design (An Intro to Design Thinking) Douglas Wilson Nguyet Vuong Security Person, Design Person, Formerly at Uptycs, Mandiant VP of Design at Civil Media Company @dallendoug @nguyetv We are Nguyet &amp; Doug

1.42k views • 45 slides
Design for Security Serena Chen | @Sereeena | OReilly Velocity 2018 Usability Security

Design for Security Serena Chen | @Sereeena | OReilly Velocity 2018 Usability Security

Design for Security Serena Chen | @Sereeena | OReilly Velocity 2018 Usability Security Good user experience design and good security cannot exist without each other Everyone deserves to be secure without being experts We need to

1.34k views • 112 slides
Transplantation of VirtualBox to the NOVA microhypervisor Norman Feske &lt;

Transplantation of VirtualBox to the NOVA microhypervisor Norman Feske &lt;

Transplantation of VirtualBox to the NOVA microhypervisor Norman Feske &lt; norman.feske@genode-labs.com &gt; Outline 1. VirtualBox 2. NOVA microhypervisor and Genode 3. Steps 4. Demo + Outlook 5. War stories Transplantation of VirtualBox

963 views • 40 slides
Design and I m plem entation of GEO Grid Design and I m plem entation of GEO Grid Security

Design and I m plem entation of GEO Grid Design and I m plem entation of GEO Grid Security

www.geogrid.org Design and I m plem entation of GEO Grid Design and I m plem entation of GEO Grid Security Security Yoshio Tanaka National Institute of Advanced Industrial Science and Technology (AIST) Japan 1 www.geogrid.org W hat is the

463 views • 18 slides
GPU-resource multiplexing in component-based systems Sebastian Sumpf &lt;

GPU-resource multiplexing in component-based systems Sebastian Sumpf &lt;

GPU-resource multiplexing in component-based systems Sebastian Sumpf &lt; sebastian.sumpf@genode-labs.com &gt; Josef Sntgen &lt; josef.soentgen@genode-labs.com &gt; Outline 1. Motivation 2. State of the art 3. GPU resource multiplexing in

689 views • 35 slides
OPG Leadership Series Solaris Security Design Kickoff, Considerations September, 2005 Casper

OPG Leadership Series Solaris Security Design Kickoff, Considerations September, 2005 Casper

OPG Leadership Series Solaris Security Design Kickoff, Considerations September, 2005 Casper Dik Sun Microsystems, Inc. Solaris Security Design Principles Or how ten years changed my perspective on security History of fixes and hardening

581 views • 37 slides
Design, Privilege Separation CS 161: Computer Security Prof. David Wagner January 27, 2016

Design, Privilege Separation CS 161: Computer Security Prof. David Wagner January 27, 2016

Software Security: Design, Privilege Separation CS 161: Computer Security Prof. David Wagner January 27, 2016 Robustness Security bugs are a fact of life How can we use access control to improve the security of software, so security bugs

695 views • 32 slides
IBM AES3 Comments MARS Unique heterogeneous design Comprehensive security analysis

IBM AES3 Comments MARS Unique heterogeneous design Comprehensive security analysis

IBM AES3 Comments MARS Unique heterogeneous design Comprehensive security analysis Security was primary design goal Ability to analyze was an important goal (unbalanced Feistel, choice of ops, ) Reflected in analyses

269 views • 5 slides
FPGA security Nele Mentens nele.mentens@kuleuven.be Design and security of cryptographic

FPGA security Nele Mentens nele.mentens@kuleuven.be Design and security of cryptographic

FPGA security Nele Mentens nele.mentens@kuleuven.be Design and security of cryptographic algorithms and devices for real-world applications June 1-6, 2014, ibenik , Croatia Outline Introduction FPGA vs. ASIC FPGA application

443 views • 17 slides
CS 423 Operating System Design: OS Security Crash Course Tianyin Xu Thanks for Prof. Adam Bates

CS 423 Operating System Design: OS Security Crash Course Tianyin Xu Thanks for Prof. Adam Bates

CS 423 Operating System Design: OS Security Crash Course Tianyin Xu Thanks for Prof. Adam Bates for the slides. CS 423: Operating Systems Design Security Properties Confidentiality? Integrity? Availability? Authenticity? CS

437 views • 22 slides
Mutually Agreed Norms for Routing Security manrs@isoc.org Insecurity by Design When the Internet

Mutually Agreed Norms for Routing Security manrs@isoc.org Insecurity by Design When the Internet

Mutually Agreed Norms for Routing Security manrs@isoc.org Insecurity by Design When the Internet was developed, they didnt build in security by design. The objective was resilience, simplicity and ease of deployment That created the Internet

791 views • 41 slides
Outline More secure design principles Software engineering for security CSci 5271 Introduction

Outline More secure design principles Software engineering for security CSci 5271 Introduction

Outline More secure design principles Software engineering for security CSci 5271 Introduction to Computer Security Secure use of the OS Defensive programming and design, contd Announcements intermission Stephen McCamant Bernsteins

535 views • 8 slides
Security Objectives and Design Information Security Management Dr Hans Georg Schaathun

Security Objectives and Design Information Security Management Dr Hans Georg Schaathun

Security Objectives and Design Information Security Management Dr Hans Georg Schaathun University of Surrey Autumn 2010 Week 2 Dr Hans Georg Schaathun Security Objectives and Design Autumn 2010 Week 2 1 / 54 The session Outline

1.55k views • 138 slides
Secure Logic Styles ECRYPT II summer school on Design and Security of Cryptographic Algorithms

Secure Logic Styles ECRYPT II summer school on Design and Security of Cryptographic Algorithms

Embedded Security Group Secure Logic Styles ECRYPT II summer school on Design and Security of Cryptographic Algorithms and Devices 1. June 2011 Amir Moradi Embedded Security Group Agenda Power Consumption Characteristics of CMOS Circuits

387 views • 24 slides

More recommend