Dynamic verification of operating system decisions
Communications of the ACM
The structure of the “THE”-multiprogramming system
Communications of the ACM
Operating Systems
Extended architecture and Hypervisor performance
Proceedings of the workshop on virtual computer systems
Virtual machines and data security
Proceedings of the workshop on virtual computer systems
An approach to systems correctness
SOSP '71 Proceedings of the third ACM symposium on Operating systems principles
Computer system organization: The B5700/B6700 series (ACM monograph series)
Computer system organization: The B5700/B6700 series (ACM monograph series)
The multics system: an examination of its structure
The multics system: an examination of its structure
A modular approach to file system design
AFIPS '69 (Spring) Proceedings of the May 14-16, 1969, spring joint computer conference
The design of IBM OS/VS2 release 2
AFIPS '73 Proceedings of the June 4-8, 1973, national computer conference and exposition
Verifiable secure operating system software
AFIPS '74 Proceedings of the May 6-10, 1974, national computer conference and exposition
Databsse system approach the management decision support
ACM Transactions on Database Systems (TODS)
| Hi-index | 0.00 |
Security is an important factor if the programs of independent and possibly error-prone or malicious users are to coexist on the same computer system. In this paper, we show that a hierarchically structured operating system, such as produced by a virtual machine system, that combines a virtual machine monitor with several independent operating systems (VMM/OS), provides substantially better software security than a conventional two-level multiprogramming operating system approach. This added protection is derived from redundant security using independent mechanisms that are inherent in the design of most VMM/OS systems. Such a system can be obtained by exploiting existing software resources.