Making information flow explicit in HiStar
HiStar is a new operating system designed to minimize the amount of code that must be trusted. HiStar provides strict information flow control, which allows users to specify precise data security policies without unduly limiting the structure of applications. HiStar's security features make it...
| Main Authors: | , , , |
|---|---|
| Other Authors: | |
| Format: | Article |
| Language: | en_US |
| Published: |
Association for Computing Machinery (ACM)
2012
|
| Online Access: | http://hdl.handle.net/1721.1/73665 https://orcid.org/0000-0003-0238-2703 |
| _version_ | 1811084028010299392 |
|---|---|
| author | Zeldovich, Nickolai Boyd-Wickizer, Silas Kohler, Eddie Mazieres, David |
| author2 | Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory |
| author_facet | Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory Zeldovich, Nickolai Boyd-Wickizer, Silas Kohler, Eddie Mazieres, David |
| author_sort | Zeldovich, Nickolai |
| collection | MIT |
| description | HiStar is a new operating system designed to minimize the amount of code that must be trusted. HiStar provides strict information flow control, which allows users to specify precise data security policies without unduly limiting the structure of applications. HiStar's security features make it possible to implement a Unix-like environment with acceptable performance almost entirely in an untrusted user-level library. The system has no notion of superuser and no fully trusted code other than the kernel. HiStar's features permit several novel applications, including privacy-preserving, untrusted virus scanners and a dynamic Web server with only a few thousand lines of trusted code. |
| first_indexed | 2024-09-23T12:43:27Z |
| format | Article |
| id | mit-1721.1/73665 |
| institution | Massachusetts Institute of Technology |
| language | en_US |
| last_indexed | 2024-09-23T12:43:27Z |
| publishDate | 2012 |
| publisher | Association for Computing Machinery (ACM) |
| record_format | dspace |
| spelling | mit-1721.1/736652022-10-01T10:42:56Z Making information flow explicit in HiStar Zeldovich, Nickolai Boyd-Wickizer, Silas Kohler, Eddie Mazieres, David Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science Zeldovich, Nickolai Boyd-Wickizer, Silas Mazieres, David HiStar is a new operating system designed to minimize the amount of code that must be trusted. HiStar provides strict information flow control, which allows users to specify precise data security policies without unduly limiting the structure of applications. HiStar's security features make it possible to implement a Unix-like environment with acceptable performance almost entirely in an untrusted user-level library. The system has no notion of superuser and no fully trusted code other than the kernel. HiStar's features permit several novel applications, including privacy-preserving, untrusted virus scanners and a dynamic Web server with only a few thousand lines of trusted code. National Science Foundation (U.S.) (Cybertrust Award CNS-0716806) National Science Foundation (U.S.) (Cybertrust/DARPA Grant CNS-0430425) 2012-10-09T13:57:34Z 2012-10-09T13:57:34Z 2011-11 Article http://purl.org/eprint/type/JournalArticle 0001-0782 1557-7317 http://hdl.handle.net/1721.1/73665 Nickolai Zeldovich, Silas Boyd-Wickizer, Eddie Kohler, and David Mazières. 2011. Making information flow explicit in HiStar. Commun. ACM 54, 11 (November 2011), 93-101. https://orcid.org/0000-0003-0238-2703 en_US http://dx.doi.org/10.1145/2018396.2018419 Communications of the ACM Creative Commons Attribution-Noncommercial-Share Alike 3.0 http://creativecommons.org/licenses/by-nc-sa/3.0/ application/pdf Association for Computing Machinery (ACM) Other University Web Domain |
| spellingShingle | Zeldovich, Nickolai Boyd-Wickizer, Silas Kohler, Eddie Mazieres, David Making information flow explicit in HiStar |
| title | Making information flow explicit in HiStar |
| title_full | Making information flow explicit in HiStar |
| title_fullStr | Making information flow explicit in HiStar |
| title_full_unstemmed | Making information flow explicit in HiStar |
| title_short | Making information flow explicit in HiStar |
| title_sort | making information flow explicit in histar |
| url | http://hdl.handle.net/1721.1/73665 https://orcid.org/0000-0003-0238-2703 |
| work_keys_str_mv | AT zeldovichnickolai makinginformationflowexplicitinhistar AT boydwickizersilas makinginformationflowexplicitinhistar AT kohlereddie makinginformationflowexplicitinhistar AT mazieresdavid makinginformationflowexplicitinhistar |