Conference Paper

Sentry: A Binary-Level Interposition Mechanism for Trusted Kernel Extension

Korea University, Korea
DOI: 10.1109/CIT.2006.165 Conference: Computer and Information Technology, 2006. CIT '06. The Sixth IEEE International Conference on
Source: IEEE Xplore


Several commodity operating systems have used kernel extensions to extend or replace their functionalities. Generally, since the kernel extensions are executed in the same address space with the kernel, a mere fault in the extensions may lead the whole system to be corrupted. So naturally, studies on the kernel extension are mainly proposed with the goal of isolating extension faults from the system. However, previous schemes require the static analysis of the extension module and the modification of kernel source code. The goal of this paper is to remove such overhead stages. This paper proposes Sentry; a lightweight kernel subsystem that provides dependable execution environment for the kernel extensions. We show the efficiency of Sentry through practical implementation on Linux.

Download full-text


Available from: Jaehyun Hwang, Jul 17, 2014