The design and implementation of Zap: a system for migrating computing environments
ACM SIGOPS Operating Systems Review - OSDI '02: Proceedings of the 5th symposium on Operating systems design and implementation
Xen and the art of virtualization
SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Virtualization of Linux Based Computers: The Linux-VServer Project
HPCS '05 Proceedings of the 19th International Symposium on High Performance Computing Systems and Applications
Flicker: an execution infrastructure for tcb minimization
Proceedings of the 3rd ACM SIGOPS/EuroSys European Conference on Computer Systems 2008
SMM rootkits: a new breed of OS independent malware
Proceedings of the 4th international conference on Security and privacy in communication netowrks
Secure Virtual Disk Images for Grid Computing
APTC '08 Proceedings of the 2008 Third Asia-Pacific Trusted Infrastructure Technologies Conference
Lest we remember: cold-boot attacks on encryption keys
Communications of the ACM - Security in the Browser
Dynamic enforcement of platform integrity
TRUST'10 Proceedings of the 3rd international conference on Trust and trustworthy computing
SCOBA: source code based attestation on custom software
Proceedings of the 26th Annual Computer Security Applications Conference
The turtles project: design and implementation of nested virtualization
OSDI'10 Proceedings of the 9th USENIX conference on Operating systems design and implementation
acTvSM: a dynamic virtualization platform for enforcement of application integrity
INTRUST'10 Proceedings of the Second international conference on Trusted Systems
| Hi-index | 0.00 |
Numerous systems have been proposed in the past to decrease Operating System (OS) loading times. More recently instant-on solutions which only implement a reduced function set, are becoming more popular. While they are satisfying the user's need to quickly operate on a platform, they are mutually exclusive and force the user to make a decision which system to use during the platform boot. We present in this paper a flexible architecture which enables a platform user to benefit from the advantages of a fast booting platform and a full-featured mainstream OS at the same time. The instant-on system and a full-featured OS can coexist and share the same resources. Moreover, our design enhances the concept of an instant-on system with secure, trustworthy and policy enforced compartments. Our unique approach combines the latest hardware virtualisation and trust technologies to deliver a more robust platform to address the tight security requirements in a corporate environment.