Fuzzing is popular for bug detection and vulnerability discovery nowadays. To adopt fuzzing
for concurrency problems like data races, several recent concurrency fuzzing approaches …

Researchers have shown that recent CPU extensions support practical, low-overhead driver
isolation to protect kernels from defects and vulnerabilities in device drivers. With …

The security of many applications relies on the kernel being secure, but history suggests that
kernel vulnerabilities are routinely discovered and exploited. In particular, exploitable …

This paper presents SUD, a system for running existing Linux device drivers as untrusted
user-space processes. Even if the device driver is controlled by a malicious adversary, it …

Concurrency bugs are caused by non-deterministic interleavings between shared memory
accesses. Their effects propagate through data and control dependences until they cause …

The virtues of security, reliability, and extensibility have made state-of-the-art microkernels
prevalent in embedded and safety-critical scenarios. However, they face performance and …

We present the first static approach that systematically detects potential double-fetch
vulnerabilities in the Linux kernel. Using a pattern-based analysis, we identified 90 double …

Faulty device drivers cause significant damage through down time and data loss. The
problem can be mitigated by an improved driver development process that guarantees …

Most operating systems provide protection and isolation to user processes, but not to critical
system components such as device drivers or other system code. Consequently, failures in …

Hardware devices can fail, but many drivers assume they do not. When confronted with real
devices that misbehave, these assumptions can lead to driver or system failures. While …