Supporting operating system kernel data disambiguation using points-to analysis
Version 2 2024-06-04, 06:01
Version 1 2016-10-10, 09:46
conference contribution
posted on 2024-06-04, 06:01 authored by AS Ibrahim, J Grundy, J Hamlyn-Harris, Mohamed AbdelrazekMohamed AbdelrazekGeneric pointers scattered around operating system (OS) kernels make the kernel data layout ambiguous. This limits current kernel integrity checking research to covering a small fraction of kernel data. Hence, there is a great need to obtain an accurate kernel data definition that resolves generic pointer ambiguities, in order to formulate a set of constraints between structures to support precise integrity checking. In this paper, we present KDD, a new tool for systematically generating a sound kernel data definition for any Cbased OS e.g. Windows and Linux, without any prior knowledge of the kernel data layout. KDD performs static points-to analysis on the kernel's source code to infer the appropriate candidate types for generic pointers. We implemented a prototype of KDD and evaluated it to prove its scalability and effectiveness.
History
Pagination
234-237Location
Essen, GermanyPublisher DOI
Start date
2012-09-03End date
2012-09-07ISBN-13
9781450312042Language
engPublication classification
E Conference publication, E1.1 Full written paper - refereedCopyright notice
2012, ACMEditor/Contributor(s)
Goedicke M, Menzies T, Saeki TTitle of proceedings
ASE 2012 : Proceedings of the 27th IEEE/ACM International Conference on Automated Software EngineeringEvent
Automated Software Engineering. IEEE/ACM International Conference (27th : 2012 : Essen, Germany)Publisher
Association for Computing MachineryPlace of publication
New York, N.Y.Usage metrics
Categories
No categories selectedKeywords
Licence
Exports
RefWorks
BibTeX
Ref. manager
Endnote
DataCite
NLM
DC