Extending Mondrian Memory Protection

Kolbitsch, Clemens; Kruegel, Christopher; Kirda, Engin

Extending Mondrian Memory Protection

Active / Technical Report | Accession Number: ADA546409 |

Open PDF

Abstract:

Most modern operating systems implement some sort of memory protection scheme for user processes. These schemes make it is possible to set access permissions that determine whether a region of memory allocated for a process can be read, written, or executed by this process. Mondrian memory protection is a technique that extends the traditional memory protection scheme and allows fine-grain permission settings. Instead of being able to set access permissions on a page-level, Mondrian memory protection supports different access permissions for individual words. However, this protection scheme is still limited to only two permission bits that have a predefined semantics. This is not sufficient to implement more complex security techniques, for example, a race condition detection system. In this paper, we propose an extension to the simple Mondrian protection scheme that provides more flexibility to user programs and the operating system. Based on our extended architecture, we implement mechanisms to protect sensitive data structures on the heap and on the stack. Moreover, we present the implementation of a technique to detect race conditions and suggest further areas of application. Our experiments demonstrate that the system can provide the expected protection and ability to detect races with reasonable overheads. Furthermore, our results show that even large systems such as the GNU C library and the Apache web server contain problems related to race conditions.

Author(s):

Kolbitsch, Clemens ; Kruegel, Christopher ; Kirda, Engin

Author Organization(s):

VIENNA UNIV OF TECHNOLOGY (AUSTRIA)

Descriptive Note:

Conference paper

Supplementary Note:

Presented at the Information Systems and Technology Panel (IST) Symposium held in Tallinn, Estonia, 22-23 November 2010 and published in Information Assurance and Cyber Defence, RTO-MP-1ST-091, as paper 10. U.S. Government or Federal Rights License

Pagination:

0019

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release, Nato

Distribution Statement:

Approved For Public Release; Distribution Is Unlimited. Nato.

RECORD

Collection: TR

Identifying Numbers

Monitor Series:

X5

Subject Terms

Joint Capability Areas:

JCA_8_Building Partnerships; JCA_8.1_Communicate; JCA_8.1.3_Influence Adversary and Competitor Audiences; JCA_5_Command and Control; JCA_5.5_Direct; JCA_5.5.1_Communicate Intent and Guidance; JCA_1_Force Support; JCA_6_Net Centric; JCA_3.2_Engagement; JCA_3_Force Application; JCA_6.4.1_Secure Information Exchange; JCA_1.2_Force Preparation; JCA_3.2.2_Non-Kinetic Means; JCA_5.3_Planning; JCA_5.4_Decide; JCA_6.4_Information Assurance; JCA_6.1.3_Switching and Routing

Modernization Areas:

Cyber

Communities of Interest:

Materials and Manufacturing Processes

Descriptor(s):

*MEMORY DEVICES, *INFORMATION ASSURANCE, COMPUTER ACCESS CONTROL, OPERATING SYSTEMS(COMPUTERS), AUSTRIA

Field(s)/Group(s):

Computer Programming and Software, Computer Systems Management and Standards

Keyword(s):

FOREIGN REPORTS, NATO FURNISHED, MONDRIAN MEMORY PROTECTION

Report Date:

2010 Nov 01

Creation Date:

2011 Aug 17