Process Virtualization and Sandboxing                         Concepts to isolate processes in user space:                ...
Byte Code Translation               Process virtual machines using Just-In-Time (JIT)               Compilation to transla...
Android Dalvik VM                     Android middleware contains an inter-component communication (ICC)                  ...
Sandboxing Untrusted Native Code                                                                                          ...
Upcoming SlideShare
Loading in...5
×

Process Virtualization and Sandboxing

461

Published on

The lecture by Sartakov A. Vasily for Summer Systems School'12.
Brief introduction to VMI and FMA technologies.
SSS'12 - Education event, organized by ksys labs[1] in 2012, for students interested in system software development and information security.

1. http://ksyslabs.org/

Published in: Education
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
461
On Slideshare
0
From Embeds
0
Number of Embeds
4
Actions
Shares
0
Downloads
9
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Process Virtualization and Sandboxing

  1. 1. Process Virtualization and Sandboxing Concepts to isolate processes in user space: Process Virtualization Sandboxingчетверг, 26 июля 12 г.
  2. 2. Byte Code Translation Process virtual machines using Just-In-Time (JIT) Compilation to translate VM specific byte code to machine code at run-time: The .Net Common Language Runtime (CLR) The Java Virtual Machine and the Dalvik VMчетверг, 26 июля 12 г.
  3. 3. Android Dalvik VM Android middleware contains an inter-component communication (ICC) reference monitor to enforce policies.четверг, 26 июля 12 г.
  4. 4. Sandboxing Untrusted Native Code Inter-Module Commu- nications (IMC) Simple RPC facility (SRPC) Netscape Plugin Application Programming Interface (NPAPI) NaCl container. Native Client uses software fault Native Client provides operating system portability isolation and a secure runtime for binary code while supporting to direct system interaction and performanceoriented features generally absent side effects through interfaces from web application programming environments, managed by Native Client such as thread support, instruction set extensions such as SSE, and use of compiler intrinsics and hand-coded assembler. Native Client: A Sandbox for Portable, Untrusted x86 Native Code Bennet Yee, David Sehr, Gregory Dardyk, J. Bradley Chen, Robert Muth, Tavis Ormandy, Shiki Okasaka, Neha Narula, and Nicholas Fullagar Google Inc.четверг, 26 июля 12 г.
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×