Grasshopper: an orthogonally persistent operating system
Computing Systems
SOSP '95 Proceedings of the fifteenth ACM symposium on Operating systems principles
An operating system structure for wide-address architectures
An operating system structure for wide-address architectures
Capability-Based Computer Systems
Capability-Based Computer Systems
Design and Implementation of an Object-Oriented 64-bit Single Address Space Microkernel
USENIX Microkernels and Other Kernel Architectures Symposium
Security and protection of data in the IBM System/38
ISCA '80 Proceedings of the 7th annual symposium on Computer Architecture
Security architecture for component-based operating systems
Proceedings of the 8th ACM SIGOPS European workshop on Support for composing distributed applications
Access control in configurable systems
Secure Internet programming
Components + security = OS extensibility
ACSAC '01 Proceedings of the 6th Australasian conference on Computer systems architecture
A resource management framework for priority-based physical-memory allocation
CRPIT '02 Proceedings of the seventh Asia-Pacific conference on Computer systems architecture
Information leakage and capability forgery in a capability-based operating system kernel
OTM'06 Proceedings of the 2006 international conference on On the Move to Meaningful Internet Systems: AWeSOMe, CAMS, COMINF, IS, KSinBIT, MIOS-CIAO, MONET - Volume Part I
Covert channel analysis of the password-capability system
ACSAC'05 Proceedings of the 10th Asia-Pacific conference on Advances in Computer Systems Architecture
Hi-index | 0.00 |
The Mungi single address space operating system provides a protected procedure call mechanism named protection domain extension (PDX). The PDX call executes in a protection domain which is the union of (a subset of) the caller's domain, and a fixed domain associated with the procedure. On return, the caller's original protection domain is re-established. Extensive caching of validation data allows amortisation of setup costs over a possibly large number of invocations. The PDX mechanism forms the basis for object support in Mungi, particularly encapsulation. It is also used for accessing devices, and to implement user-level page fault handlers and other services.