In classical machine virtualization, a hypervisor runs multiple operating systems
simultaneously, each on its own virtual machine. In nested virtualization, a hypervisor can …

In-memory key-value stores are critical components that help scale large internet services by
providing low-latency access to popular data. Memcached, one of the most popular key …

Virtual machine monitors (VMMs) have been hailed as the basis for an increasing number of
reliable or trusted computing systems. The Xen VMM is a relatively small piece of software …

Virtual machines (VMs) and virtualization are one of the core computing technologies today.
Inter-VM communication is not only prevalent but also one of the leading costs for data …

The paravirtualized I/O driver domain model, used in Xen, provides several advantages
including device driver isolation in a safe execution environment, support for guest VM …

As virtual machines become increasingly commonplace as a method of separating hostile or
hazardous code from commodity systems, the potential security exposure from …

This paper presents SUD, a system for running existing Linux device drivers as untrusted
user-space processes. Even if the device driver is controlled by a malicious adversary, it …

Virtualization is a rapidly evolving technology that can be used to provide a range of benefits
to computing systems, including improved resource utilization, software portability, and …

IOMMU has been introduced to thwart DMA attacks. However, the performance degradation
prevents it from being enabled on most systems. Even worse, recent studies show that …

Counting Bloom filters (CBF) and their variants are data structures that support membership
or multiplicity queries with a low probabilistic error. Yet, they incur a significant memory …