Verifying the verifier: ebpf range analysis verification

[Free GPT-4]
[DeepSeek]
[PDF] usenix.org

Validating the {eBPF} verifier via state embedding

H Sun, Z Su - 18th USENIX Symposium on Operating Systems …, 2024 - usenix.org
This paper introduces state embedding, a novel and highly effective technique for validating
the correctness of the eBPF verifier, a critical component for Linux kernel security. To check …
保存 引用 被引用数: 2 関連記事 HTMLバージョン
[Free GPT-4]
[DeepSeek]
[PDF] acm.org

NetEdit: An Orchestration Platform for eBPF Network Functions at Scale

TA Benson, P Kannan, P Gupta, B Madhavan… - Proceedings of the …, 2024 - dl.acm.org
Managing the performance of thousands of services across millions of servers demands a
networking stack that can dynamically adjust protocol settings to match diverse priorities and …
保存 引用 被引用数: 3 関連記事 全 2 バージョン
[Free GPT-4]
[DeepSeek]
[PDF] arxiv.org

Safebpf: Hardware-assisted defense-in-depth for ebpf kernel extensions

SY Lim, T Prasad, X Han, T Pasquier - … of the 2024 on Cloud Computing …, 2024 - dl.acm.org
The eBPF framework enables execution of user-provided code in the Linux kernel. In the last
few years, a large ecosystem of cloud services has leveraged eBPF to enhance container …
保存 引用 被引用数: 1 関連記事 全 7 バージョン
[Free GPT-4]
[DeepSeek]
[PDF] wingtecher.com

Finding Correctness Bugs in eBPF Verifier with Structured and Sanitized Program

H Sun, Y Xu, J Liu, Y Shen, N Guan… - Proceedings of the …, 2024 - dl.acm.org
eBPF is an inspiring technique in Linux that allows user space processes to extend the
kernel by dynamically injecting programs. However, it poses security issues, since the …
保存 引用 被引用数: 6 関連記事 全 3 バージョン
[Free GPT-4]
[DeepSeek]
[PDF] arxiv.org

ConstraintFlow: A DSL for Specification and Verification of Neural Network Analyses

A Singh, Y Sarita, C Mendis, G Singh - arxiv preprint arxiv:2403.18729, 2024 - arxiv.org
The uninterpretability of DNNs hinders their deployment to safety-critical applications.
Recent works have shown that Abstract-Interpretation-based formal certification techniques …
保存 引用 被引用数: 1 関連記事 全 2 バージョン HTMLバージョン

Enhanced eBPF Verification and eBPF-based Runtime Safety Protection

G **, J Li, G Briskin - 2024 IEEE Security and Privacy …, 2024 - ieeexplore.ieee.org
The extended Berkeley Packet Filter (eBPF) technology has been extending the capabilities
of current Operating Systems (OSs) rapidly in recent years. The eBPF community is well …
保存 引用 被引用数: 1 関連記事 全 2 バージョン
[Free GPT-4]
[DeepSeek]
[PDF] arxiv.org

DiffSpec: Differential Testing with LLMs using Natural Language Specifications and Code Artifacts

N Rao, E Gilbert, T Ramananandro, N Swamy… - arxiv preprint arxiv …, 2024 - arxiv.org
Differential testing can be an effective way to find bugs in software systems with multiple
implementations that conform to the same specification, like compilers, network protocol …
保存 引用 関連記事 全 2 バージョン HTMLバージョン
[Free GPT-4]
[DeepSeek]
[PDF] acm.org

Merlin: Multi-tier Optimization of eBPF Code for Performance and Compactness

J Mao, H Ding, J Zhai, S Ma - Proceedings of the 29th ACM International …, 2024 - dl.acm.org
eBPF (extended Berkeley Packet Filter) significantly enhances observability, performance,
and security within the Linux kernel, playing a pivotal role in various real-world applications …
保存 引用 被引用数: 2 関連記事 全 2 バージョン

ConstraintFlow: A Declarative DSL for Easy Development of DNN Certifiers

A Singh, Y Sarita, C Mendis, G Singh - International Static Analysis …, 2024 - Springer
We develop a declarative DSL-ConstraintFlow-that can be used to specify Abstract
Interpretation-based DNN certifiers. In ConstraintFlow, programmers can easily define …
保存 引用 関連記事 全 2 バージョン
[Free GPT-4]
[DeepSeek]
[PDF] rutgers.edu

Fixing Latent Unsound Abstract Operators in the eBPF Verifier of the Linux Kernel

M Shachnai, H Vishwanathan, S Narayana… - International Static …, 2024 - Springer
This paper describes our experience deploying automated verification techniques for
proving the correctness of value tracking components of the eBPF verifier in the Linux Kernel …
保存 引用 関連記事 全 7 バージョン