Scribd Logo
Upload

Welcome to Scribd!

  • 26 views

    Module-2 2

    Uploaded by

    Harpreet Singh

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Module-2 2

    Uploaded by

    Harpreet Singh
    26 views8 pages

    Original Title

    Module-2.2.pptx

    Copyright

    © © All Rights Reserved

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pptx, pdf, or txt
    26 views8 pages

    Module-2 2

    Uploaded by

    Harpreet Singh

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pptx, pdf, or txt
    of 8

    Module 2.

    2
    Isolation: Confinement Principle
    Isolation

    The confinement
    principle
    Running untrusted code
    We often need to run buggy/untrusted code:
    programs from untrusted Internet sites:
    apps, extensions, plug-ins, codecs for media player

    exposed applications: pdf viewers, outlook

    legacy daemons: sendmail, bind

    honeypots

    Goal: if application misbehaves kill it


    Approach:Confinement
    Confinement: Ensure misbehaving app cannot harm rest of system

    Can be implemented at many levels:


    Hardware: run application on isolated hardware (air
    gap)

    app 1 app 2

    Network 2 air gap network 1

    Resource Expensive
    Approach: confinement
    Confinement: ensure misbehaving app cannot harm rest
    of system

    Can be implemented at many levels:


    Virtual machines: isolate OSs on a single machine

    app1 app2
    OS1 OS2

    Virtual Machine Monitor (VMM)


    Approach: confinement
    Confinement: Ensure misbehaving app cannot harm rest of system

    Can be implemented at many levels:


    Process: System Call Interposition
    Isolate a process in a single operating system

    process process
    2 1

    Operating System
    User Mode Linux (UML)
    Approach: confinement
    Confinement: Ensure misbehaving app cannot harm rest of system
    Can be implemented at many levels:
    Threads: Software Fault Isolation (SFI)
    Isolating threads sharing same address space
    Thread Local Storage (TLS)

    Application: e.g. browser-based confinement


    Discretionary Access Control
    SOP Same Origin Policy
    CSP Content Security Policy
    CORS Cross Origin Resource Sharing

    Mandatory Access Control


    COWL Confinement with Original Web Label
    Implementing confinement
    Key component: reference monitor
    Mediates requests from applications
    Implements protection policy
    Enforces isolation and confinement
    Must always be invoked:
    Every application request must be mediated
    Tamperproof:
    Reference monitor cannot be killed
    or if killed, then monitored process is killed too
    Small enough to be analyzed and validated

    You might also like