The nucleus of a multiprogramming system
Communications of the ACM
The structure of the “THE”-multiprogramming system
Communications of the ACM
Programming semantics for multiprogrammed computations
Communications of the ACM
Protection in programmed systems.
Protection in programmed systems.
Structured programming
Synchronizing shared abstract types
ACM Transactions on Computer Systems (TOCS)
An architecture for object management in OIS
ACM Transactions on Information Systems (TOIS)
A Butler process for resource sharing on Spice machines
ACM Transactions on Information Systems (TOIS)
Choices (class hierarchical open interface for custom embedded systems)
ACM SIGOPS Operating Systems Review
Single-user capabilities in interprocess communication
ACM SIGOPS Operating Systems Review
Regeneration of Replicated Objects: A Technique and its Eden Implementation
IEEE Transactions on Software Engineering
Distributed shared memory in a loosely coupled distributed system
SIGCOMM '87 Proceedings of the ACM workshop on Frontiers in computer communications technology
An open enviornment for building parallel programming systems
PPEALS '88 Proceedings of the ACM/SIGPLAN conference on Parallel programming: experience with applications, languages and systems
Picasso: an experiment in hypercube operating system design
C3P Proceedings of the third conference on Hypercube concurrent computers and applications: Architecture, software, computer systems, and general issues - Volume 1
Petri-net-based hypertext: document structure with browsing semantics
ACM Transactions on Information Systems (TOIS)
Authentication Mechanisms in Microprocessor-Based Local Area Networks
IEEE Transactions on Software Engineering
Invited talk: modular architectures for distributed and databases systems
PODS '89 Proceedings of the eighth ACM SIGACT-SIGMOD-SIGART symposium on Principles of database systems
The Amber system: parallel programming on a network of multiprocessors
SOSP '89 Proceedings of the twelfth ACM symposium on Operating systems principles
Threads and input/output in the synthesis kernal
SOSP '89 Proceedings of the twelfth ACM symposium on Operating systems principles
Addressing, Routing, and Broadcasting in Hexagonal Mesh Multiprocessors
IEEE Transactions on Computers
The muse object architecture: a new operating system structuring concept
ACM SIGOPS Operating Systems Review
The architecture of a memory management unit for object-oriented systems
ACM SIGARCH Computer Architecture News
(SM)/sup 2/-II: A Large-Scale Multiprocessor for Sparse Matrix Calculations
IEEE Transactions on Computers
Persistent shared object support in the Guide system: evaluation & related work
OOPSLA '94 Proceedings of the ninth annual conference on Object-oriented programming systems, language, and applications
The operating system kernel as a secure programmable machine
ACM SIGOPS Operating Systems Review
SOSP '95 Proceedings of the fifteenth ACM symposium on Operating systems principles
Exokernel: an operating system architecture for application-level resource management
SOSP '95 Proceedings of the fifteenth ACM symposium on Operating systems principles
Meta objects for access control: extending capability-based security
NSPW '97 Proceedings of the 1997 workshop on New security paradigms
Flexible meta access-control for collaborative applications
CSCW '98 Proceedings of the 1998 ACM conference on Computer supported cooperative work
A cost-effective, high-bandwidth storage architecture
Proceedings of the eighth international conference on Architectural support for programming languages and operating systems
Meta objects for access control: a formal model for role-based principals
Proceedings of the 1998 workshop on New security paradigms
Security architecture for component-based operating systems
Proceedings of the 8th ACM SIGOPS European workshop on Support for composing distributed applications
Ensuring integrity by adding obligations to privileges
ICSE '85 Proceedings of the 8th international conference on Software engineering
Secure databases: protection against user influence
ACM Transactions on Database Systems (TODS)
Distributed transactions for reliable systems
Proceedings of the tenth ACM symposium on Operating systems principles
Autonomous decentralized software structure and its application
ACM '86 Proceedings of 1986 ACM Fall joint computer conference
The Gutenberg operating system kernel
ACM '86 Proceedings of 1986 ACM Fall joint computer conference
Fault Tolerant Operating Systems
ACM Computing Surveys (CSUR)
Operating System Structures to Support Security and Reliable Software
ACM Computing Surveys (CSUR)
Multiprocessor Organization—a Survey
ACM Computing Surveys (CSUR)
Experience Using Multiprocessor Systems—A Status Report
ACM Computing Surveys (CSUR)
Pilot: an operating system for a personal computer
Communications of the ACM
A model for and discussion of multi-interpreter systems
Communications of the ACM
A language extension for expressing constraints on data access
Communications of the ACM
Intentional resolution of privacy protection in database systems
Communications of the ACM
A lattice model of secure information flow
Communications of the ACM
Reflections on an operating system design
Communications of the ACM
Access control in configurable systems
Secure Internet programming
Design requirements of a single-user operating system
ACM SIGSMALL/PC Notes
The worm program model: an application centred point of view for distributed architecture design
EW 3 Proceedings of the 3rd workshop on ACM SIGOPS European workshop: Autonomy or interdependence in distributed systems?
The operating system kernel as a secure programmable machine
EW 6 Proceedings of the 6th workshop on ACM SIGOPS European workshop: Matching operating systems to application needs
Hidden capabilities: towards a flexible protection utility for the internet
EW 7 Proceedings of the 7th workshop on ACM SIGOPS European workshop: Systems support for worldwide applications
A machine-oriented resource management architecture
ISCA '75 Proceedings of the 2nd annual symposium on Computer architecture
Back to the future: a retroactive study of aspect evolution in operating system code
Proceedings of the 2nd international conference on Aspect-oriented software development
VLDB '91 Proceedings of the 17th International Conference on Very Large Data Bases
Modular Internet Programming with Cells
ECOOP '02 Proceedings of the 16th European Conference on Object-Oriented Programming
Capability-Based Financial Instruments
FC '00 Proceedings of the 4th International Conference on Financial Cryptography
The invention of concurrent programming
The origin of concurrent programming
Hierarchical function distribution - a design principle for advanced multicomputer architectures
ISCA '83 Proceedings of the 10th annual international symposium on Computer architecture
Heart: An operating system nucleus machine implemented by firmware
ASPLOS I Proceedings of the first international symposium on Architectural support for programming languages and operating systems
The MuNet: A scalable decentralized architecture for parallel computation
ISCA '80 Proceedings of the 7th annual symposium on Computer Architecture
A technique for the architectural implementation of software subsystems
ISCA '80 Proceedings of the 7th annual symposium on Computer Architecture
Architectural implications of abstract data type implementation
ISCA '79 Proceedings of the 6th annual symposium on Computer architecture
An approach to a fault-tolerant system architecture
ISCA '78 Proceedings of the 5th annual symposium on Computer architecture
Design and principles of a fault tolerant system
ICSE '78 Proceedings of the 3rd international conference on Software engineering
Designing software for ease of extension and contraction
ICSE '78 Proceedings of the 3rd international conference on Software engineering
An extensible file system for hydra
ICSE '78 Proceedings of the 3rd international conference on Software engineering
Operating system design with computer network communication protocols
SIGCOMM '77 Proceedings of the fifth symposium on Data communications
Hardware support for inter-process communication and processor sharing
ISCA '76 Proceedings of the 3rd annual symposium on Computer architecture
Possibility theory: As a means for modeling computer security and protection
MVL '78 Proceedings of the eighth international symposium on Multiple-valued logic
Engineering a security kernel for Multics
SOSP '75 Proceedings of the fifth ACM symposium on Operating systems principles
Sharing data and services in a virtual machine system
SOSP '75 Proceedings of the fifth ACM symposium on Operating systems principles
A multi-microprocessor computer system architecture
SOSP '75 Proceedings of the fifth ACM symposium on Operating systems principles
Overview of the Hydra Operating System development
SOSP '75 Proceedings of the fifth ACM symposium on Operating systems principles
Policy/mechanism separation in Hydra
SOSP '75 Proceedings of the fifth ACM symposium on Operating systems principles
The enforcement of security policies for computation
SOSP '75 Proceedings of the fifth ACM symposium on Operating systems principles
A domain structure for distributed computer systems
SOSP '77 Proceedings of the sixth ACM symposium on Operating systems principles
SOSP '77 Proceedings of the sixth ACM symposium on Operating systems principles
Modelling and analysis of distributed software systems
SOSP '79 Proceedings of the seventh ACM symposium on Operating systems principles
StarOS, a multiprocessor operating system for the support of task forces
SOSP '79 Proceedings of the seventh ACM symposium on Operating systems principles
In support of domain structure for operating systems
SOSP '79 Proceedings of the seventh ACM symposium on Operating systems principles
iMAX: A multiprocessor operating system for an object-based computer
SOSP '81 Proceedings of the eighth ACM symposium on Operating systems principles
The iMAX-432 object filing system
SOSP '81 Proceedings of the eighth ACM symposium on Operating systems principles
The architecture of the Eden system
SOSP '81 Proceedings of the eighth ACM symposium on Operating systems principles
UIDs as internal names in a distributed file system
PODC '82 Proceedings of the first ACM SIGACT-SIGOPS symposium on Principles of distributed computing
NIL: An integrated language and system for distributed programming
Proceedings of the 1983 ACM SIGPLAN symposium on Programming language issues in software systems
The incremental garbage collection of processes
Proceedings of the 1977 symposium on Artificial intelligence and programming languages
The use of abstract data types to simplify program modifications
Proceedings of the 1976 conference on Data : Abstraction, definition and structure
How to design a system in which modules can be changed on the fly
ICSE '76 Proceedings of the 2nd international conference on Software engineering
Data flow, abstraction levels and specifications for communications switching systems
ICSE '76 Proceedings of the 2nd international conference on Software engineering
Language features for process interaction
Proceedings of an ACM conference on Language design for reliable software
Reliable hardware-software architecture
Proceedings of the international conference on Reliable software
On attaining reliable software for a secure operating system
Proceedings of the international conference on Reliable software
Object oriented operating systems: An emerging design methodology
ACM '82 Proceedings of the ACM '82 conference
Multiprocessor software design
ACM '80 Proceedings of the ACM 1980 annual conference
Hardware architecture for recursive Virtual Machines
ACM '75 Proceedings of the 1975 annual conference
A new approach to construction of computer systems
ACM '75 Proceedings of the 1975 annual conference
Partitions and principles for secure operating systems
ACM '75 Proceedings of the 1975 annual conference
A few examples of how to use a symmetrical multi-micro-processor
ISCA '77 Proceedings of the 4th annual symposium on Computer architecture
Verifying formal specifications of synchronous processes
POPL '76 Proceedings of the 3rd ACM SIGACT-SIGPLAN symposium on Principles on programming languages
Capability architecture revisited
ACM SIGOPS Operating Systems Review
Using type-extension to organize virtual-memory mechanisms
ACM SIGOPS Operating Systems Review
ACM SIGOPS Operating Systems Review
The external consistency of abstract data types
ACM SIGPLAN Notices
ACM SIGMOD Record
Current research in computer networks: a personal view
ACM SIGCOMM Computer Communication Review
End-user controlled group formation and access rights management in a shared workspace system
CSCW '04 Proceedings of the 2004 ACM conference on Computer supported cooperative work
A computer system supporting data abstraction
ACM SIGOPS Operating Systems Review
A computer system supporting data abstraction
ACM SIGOPS Operating Systems Review
An overview of the Amoeba distributed operating system
ACM SIGOPS Operating Systems Review
Brittle systems will break - not bend: can aspect-oriented programming help?
EW 10 Proceedings of the 10th workshop on ACM SIGOPS European workshop
Firmware/hardware support for operating systems: principles and selected history
ACM SIGMICRO Newsletter
The development of the Emerald programming language
Proceedings of the third ACM SIGPLAN conference on History of programming languages
Homeviews: peer-to-peer middleware for personal data sharing applications
Proceedings of the 2007 ACM SIGMOD international conference on Management of data
Constructing services with interposable virtual hardware
NSDI'04 Proceedings of the 1st conference on Symposium on Networked Systems Design and Implementation - Volume 1
Lightweight Static Capabilities
Electronic Notes in Theoretical Computer Science (ENTCS)
Secure coprocessors in electronic commerce applications
WOEC'95 Proceedings of the 1st conference on USENIX Workshop on Electronic Commerce - Volume 1
The Nachos instructional operating system
USENIX'93 Proceedings of the USENIX Winter 1993 Conference Proceedings on USENIX Winter 1993 Conference Proceedings
Operating system protection for fine-grained programs
SSYM'98 Proceedings of the 7th conference on USENIX Security Symposium - Volume 7
Building systems that flexibly control downloaded executable context
SSYM'96 Proceedings of the 6th conference on USENIX Security Symposium, Focusing on Applications of Cryptography - Volume 6
Providing policy control over object operations in a mach based system
SSYM'95 Proceedings of the 5th conference on USENIX UNIX Security Symposium - Volume 5
SLIC: an extensibility system for commodity operating systems
ATEC '98 Proceedings of the annual conference on USENIX Annual Technical Conference
The mechanics of in-kernel synchronization for a scalable microkernel
ACM SIGOPS Operating Systems Review
Data base management systems security and INGRES
VLDB '79 Proceedings of the fifth international conference on Very Large Data Bases - Volume 5
A semantic model for data base protection languages
VLDB '76 Proceedings of the second international conference on Systems for Large Data Bases
Formal Models of Capability-Based Protection Systems
IEEE Transactions on Computers
Processor Interconnection Strategies
IEEE Transactions on Computers
Some Performance Issues in Multiprocessor System Design
IEEE Transactions on Computers
A Computer Architecture for Level Structured Systems
IEEE Transactions on Computers
Micros, A Distributed Operating System for Micronet, A Reconfigurable Network Computer
IEEE Transactions on Computers
Privilege separation made easy: trusting small libraries not big processes
Proceedings of the 1st European Workshop on System Security
Organizing and sharing distributed personal web-service data
Proceedings of the 17th international conference on World Wide Web
Securing information flow via dynamic capture of dependencies
Journal of Computer Security - 20th IEEE Computer Security Foundations Symposium (CSF)
Software management of Cm*: a distributed multiprocessor
AFIPS '77 Proceedings of the June 13-16, 1977, national computer conference
seL4: formal verification of an OS kernel
Proceedings of the ACM SIGOPS 22nd symposium on Operating systems principles
IBM Systems Journal
Data base security: requirements, policies, and models
IBM Systems Journal
Fidelis: a policy-driven trust management framework
iTrust'03 Proceedings of the 1st international conference on Trust management
CapaCon: access control mechanism for inter-device communications through TCP connections
Proceedings of the 2010 ACM Symposium on Applied Computing
Multi-layer audit of access rights
SDM'07 Proceedings of the 4th VLDB conference on Secure data management
The regularity principle of self-management
Proceedings of the second international workshop on Self-organizing architectures
CloudViews: communal data sharing in public clouds
HotCloud'09 Proceedings of the 2009 conference on Hot topics in cloud computing
An authorization framework based on constrained delegation
ISPA'04 Proceedings of the Second international conference on Parallel and Distributed Processing and Applications
A metaphor and user interface for managing access permissions in shared workspace systems
From Integrated Publication and Information Systems to Virtual Information and Knowledge Environments
On the correctness of operating system kernels
TPHOLs'05 Proceedings of the 18th international conference on Theorem Proving in Higher Order Logics
Compiling lambda-expressions using continuations and factorizations
Computer Languages
Language extensions for specifying program access control policies in programming languages
Journal of Systems and Software
Decentralized governance of distributed systems via interaction control
Logic Programs, Norms and Action
BottleCap: a credential manager for capability systems
Proceedings of the seventh ACM workshop on Scalable trusted computing
Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security
Comprehensive formal verification of an OS microkernel
ACM Transactions on Computer Systems (TOCS)
Hi-index | 48.33 |
This paper describes the design philosophy of HYDRA—the kernel of an operating system for C.mmp, the Carnegie-Mellon Multi-Mini-Processor. This philosophy is realized through the introduction of a generalized notion of “resource,” both physical and virtual, called an “object.” Mechanisms are presented for dealing with objects, including the creation of new types, specification of new operations applicable to a given type, sharing, and protection of any reference to a given object against improper application of any of the operations defined with respect to that type of object. The mechanisms provide a coherent basis for extension of the system in two directions: the introduction of new facilities, and the creation of highly secure systems.