Verus: A practical foundation for systems verification
Formal verification is a promising approach to eliminate bugs at compile time, before they
ship. Indeed, our community has verified a wide variety of system software. However, much …
ship. Indeed, our community has verified a wide variety of system software. However, much …
Practical verification of system-software components written in standard C
Systems code is challenging to verify, because it uses constructs (like raw pointers, pointer
arithmetic, and bit twiddling) that are hard for tools to reason about. Existing approaches …
arithmetic, and bit twiddling) that are hard for tools to reason about. Existing approaches …
Verifying Rust Implementation of Page Tables in a Software Enclave Hypervisor
As trusted execution environments (TEE) have become the corner stone for secure cloud
computing, it is critical that they are reliable and enforce proper isolation, of which a key …
computing, it is critical that they are reliable and enforce proper isolation, of which a key …
Atmosphere: Towards Practical Verified Kernels in Rust
Historically, development of formally-verified operating systems was a challenging, time-
consuming undertaking that relied on a narrow formal verification expertise and required …
consuming undertaking that relied on a narrow formal verification expertise and required …
[PDF][PDF] SECvma: Virtualization-based Linux Kernel Protection for Arm
TB Yen, J Li, SW Li - shihweili.com
A rootkit or an attacker that exploited a single vulnerability in a monolithic OS kernel like
Linux could obtain full authority over the system. We introduce SECvma, a new system with …
Linux could obtain full authority over the system. We introduce SECvma, a new system with …