Team for Research in
Ubiquitous Secure Technology

Design Principles for Isolation Kernels
Age Kvalnes, Dag Johansen, Robbert van Renesse, Fred Schneider, Steffen Viken Valvag

Citation
Age Kvalnes, Dag Johansen, Robbert van Renesse, Fred Schneider, Steffen Viken Valvag. "Design Principles for Isolation Kernels". Technical report, University of Troms, Cornell University, Technical Report 2011-70, 2011.

Abstract
An operating system must ensure that no hosted service can cause the service level agreement of another to be violated. If control is incomplete, no amount of over-provisioning can compensate for it and there will inevitably be ways to circumvent policy enforcement. Still, competing services are often consolidated on the same machine to reduce operational costs. This article presents design principles for constructing operating systems where all resource consumption is under scheduler control. The viability of the principles serving as a design-foundation is substantiated through the implementation of a new operating system kernel that provides commodity operating system abstractions. Using this kernel, the efficacy of the principles is experimentally corroborated.

Electronic downloads

Citation formats  
  • HTML
    Age Kvalnes, Dag Johansen, Robbert van Renesse, Fred
    Schneider, Steffen Viken Valvag. <a
    href="http://www.truststc.org/pubs/872.html"
    ><i>Design Principles for Isolation
    Kernels</i></a>, Technical report,  University
    of Troms, Cornell University, Technical Report 2011-70, 2011.
  • Plain text
    Age Kvalnes, Dag Johansen, Robbert van Renesse, Fred
    Schneider, Steffen Viken Valvag. "Design Principles for
    Isolation Kernels". Technical report,  University of
    Troms, Cornell University, Technical Report 2011-70, 2011.
  • BibTeX
    @techreport{KvalnesJohansenvanRenesseSchneiderValvag11_DesignPrinciplesForIsolationKernels,
        author = {Age Kvalnes and Dag Johansen and Robbert van
                  Renesse and Fred Schneider and Steffen Viken Valvag},
        title = {Design Principles for Isolation Kernels},
        institution = {University of Troms, Cornell University},
        number = {Technical Report 2011-70},
        year = {2011},
        abstract = {An operating system must ensure that no hosted
                  service can cause the service level agreement of
                  another to be violated. If control is incomplete,
                  no amount of over-provisioning can compensate for
                  it and there will inevitably be ways to circumvent
                  policy enforcement. Still, competing services are
                  often consolidated on the same machine to reduce
                  operational costs. This article presents design
                  principles for constructing operating systems
                  where all resource consumption is under scheduler
                  control. The viability of the principles serving
                  as a design-foundation is substantiated through
                  the implementation of a new operating system
                  kernel that provides commodity operating system
                  abstractions. Using this kernel, the efficacy of
                  the principles is experimentally corroborated.},
        URL = {http://www.truststc.org/pubs/872.html}
    }
    

Posted by Mary Stewart on 4 Apr 2012.
For additional information, see the Publications FAQ or contact webmaster at www truststc org.

Notice: This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright.