Verifying security invariants in expressOS

Haohui Mai Edgar, Pek Hui Xue, Samuel T. King, P. Madhusudan

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Security for applications running on mobile devices is important. In this paper we present ExpressOS, a new OS for enabling highassurance applications to run on commodity mobile devices securely. Our main contributions are a new OS architecture and our use of formal methods for proving key security invariants about our implementation. In our use of formal methods, we focus solely on proving that our OS implements our security invariants correctly, rather than striving for full functional correctness, requiring significantly less verification effort while still proving the security relevant aspects of our system. We built ExpressOS, analyzed its security, and tested its performance. Our evaluation shows that the performance of ExpressOS is comparable to an Android-based system. In one test, we ran the same web browser on ExpressOS and on an Android-based system, and found that ExpressOS adds 16% overhead on average to the page load latency time for nine popular web sites. Categories and Subject Descriptors D.4.6 [Operating Systems]: Security and Protection; D.2.4 [Software Engineering]: Software/ Program Verification General Terms Security, Verification.

Original languageEnglish (US)
Title of host publicationASPLOS 2013 - 18th International Conference on Architectural Support for Programming Languages and Operating Systems
Pages293-303
Number of pages11
DOIs
StatePublished - Apr 5 2013
Event18th International Conference on Architectural Support for Programming Languages and Operating Systems, ASPLOS 2013 - Houston, TX, United States
Duration: Mar 16 2013Mar 20 2013

Publication series

NameInternational Conference on Architectural Support for Programming Languages and Operating Systems - ASPLOS

Other

Other18th International Conference on Architectural Support for Programming Languages and Operating Systems, ASPLOS 2013
CountryUnited States
CityHouston, TX
Period3/16/133/20/13

Keywords

  • Automatic theorem proving
  • Microkernel
  • Mobile security
  • Programming by contracts

ASJC Scopus subject areas

  • Software
  • Information Systems
  • Hardware and Architecture

Fingerprint Dive into the research topics of 'Verifying security invariants in expressOS'. Together they form a unique fingerprint.

Cite this