Serverless computing is an excellent fit for big data processing because it can scale quickly
and cheaply to thousands of parallel functions. Existing serverless platforms isolate …

Serverless computing has emerged as a new cloud computing paradigm, where an
application consists of individual functions that can be separately managed and executed …

Isolating sensitive state and data can increase the security and robustness of many
applications. Examples include protecting cryptographic keys against exploits like …

In FaaS workflows, a set of functions implement application logic by interacting and
exchanging data among themselves. Contemporary FaaS platforms execute each function …

As network, I/O, accelerator, and NVM devices capable of a million operations per second
make their way into data centers, the software stack managing such devices has been …

After more than twenty-five years of research, memory safety violations remain one of the
major causes of security vulnerabilities in real-world software. Memory-safe languages, like …

Intel Memory Protection Keys (MPK) is a new hardware primitive to support thread-local
permission control on groups of pages without requiring modification of page tables …

Commodity operating system kernels remain monolithic for practical and historical reasons.
All kernel code shares a single address space, executes with elevated processor privileges …

Efficient and secure in-process isolation is in great demand, as evidenced in the shift
towards JavaScript and the recent revival of memory protection keys. Yet, state-of-the-art …

Fuzzing is a software testing technique that finds bugs by repeatedly injecting mutated
inputs to a target program. Known to be a highly practical approach, fuzzing is gaining more …