论文信息 - Protection is a software issue

Protection is a software issue

Modern operating systems are strongly dependent on software mechanisms to protect system resources from users. This is true despite the fact that the promoters of these systems imply that their reliability and integrity derive solely from the use of a core set of protected hardware mechanisms, such as address spaces and protected supervisor mode. While typical microprocessors provide cheap and effective hardware mechanisms to protect the load word/store word interface, operating systems are forced to abstract and virtualize this interface to export a far richer set, of resources such as files, sockets, threads, and consoles. The access semantics for these resources are almost always protected by software checks and not hardware. Processor architectures simply do not provide enough fine-grained control over access to shared system resources to ensure that a program only accesses the resources to which it is allowed. Our position is that software protection mechanisms are not only necessary, but have inherent advantages over hardware for enforcing the protection requirements of an operating system. Software is flexible, explicit, precise, and in many cases, open to incredible optimizations. By contrast, hardware mechanisms are rigid, implicit, imprecise, and unoptimizable.

[1] Viktors Berstis,et al. Security and protection of data in the IBM System/38 , 1980, ISCA '80.

[2] Willy Zwaenepoel,et al. The distributed V kernel and its performance for diskless workstations , 1983, SOSP '83.

[3] Elliott I. Organick,et al. A programmer's view of the intel 432 system. mcgraw hill , 1983 .

[4] Calton Pu,et al. Threads and input/output in the synthesis kernal , 1989, SOSP '89.

[5] Alessandro Forin,et al. UNIX as an Application Program , 1990, USENIX Summer.

[6] Greg Nelson,et al. Systems programming in modula-3 , 1991 .

[7] Robert L. Hummel. PC Magazine Programmer's Technical Reference: The Processor and Coprocessor , 1991 .

[8] T. Anderson,et al. Eecient Software-based Fault Isolation , 1993 .

[9] Robert Wahbe,et al. Efficient software-based fault isolation , 1994, SOSP '93.

[10] George Eckel. Inside Windows NT , 1993 .

[11] Dawson R. Engler,et al. The operating system kernel as a secure programmable machine , 1994, OPSR.

[12] David R. Cheriton,et al. A caching model of operating system kernel functionality , 1994, OSDI '94.

[13] Brian N. Bershad,et al. Some Issues in the Design of an Extensible Operating System (Panel Statement) , 1994, OSDI.

[14] Emin Gün Sirer,et al. SPIN—an extensible microkernel for application-specific operating system services , 1995, OPSR.