|
PRESENTATION:
|
Antikernel: A Decentralized Secure Hardware-Software Operating System Architecture
|
|
PRESENTER(S):
|
Dr. Andrew Zonenberg, Senior Security Consultant for IOActive
|
|
CONFERENCE:
|
Cryptographic Hardware and Embedded Systems 2016 Conference
|
|
LOCATION:
|
University of California Santa Barbara, Campbell Hall
|
|
DATE & TIME:
|
August 18, 2016 at 9:50 AM
|
Dr. Andrew Zonenberg will co-present with Bulent Yener, Professor of Computer Science at Rensselaer Polytechnic Institute, on Antikernel, a novel operating system architecture consisting of both hardware and software components and designed to be fundamentally more secure than the state of the art.
The “kernel” model has been part of operating system architecture for decades, but upon closer inspection it clearly violates the principle of least required privilege. The kernel is a single entity which provides many services (memory management, interfacing to drivers, context switching, IPC) that have no real relation to each other, and has the ability to observe or tamper with all states of the system. To make formal verification easier, and improve parallelism, the Antikernel system is highly modular and consists of many independent hardware state machines (one or more of which may be a general-purpose CPU running application or systems software) connected by a packet-switched network-on-chip (NoC). We create and verify an FPGA-based prototype of the system.
About Andrew Zonenberg
Dr. Zonenberg is a senior security consultant at IOActive. He received a PhD and BS in computer science from Rensselaer Polytechnic Institute (RPI), where he designed and taught the first ever full-semester course on semiconductor reverse engineering.
His primary research focuses are integrated circuit (IC) security, IC reverse engineering, and embedded/hardware security. Other research interests include computer and system on chip (SoC) architecture, programmable logic, and operating system security. He is an active contributor to siliconpr0n.org and a regular speaker at industry and academic conferences in both the USA and Canada.
About CHES
The annual CHES conference highlights new results in the design and analysis of cryptographic hardware and software implementations. CHES provides a valuable connection between the research and cryptographic engineering communities and attracts participants from industry, academia, and government organizations.
About IOActive
IOActive is the industry’s only research-driven, high-end information security services firm with a proven history of better securing our customers through real-world scenarios created by our security experts. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment to chip reverse engineering across multiple industries. IOActive is the only security services firm that has a dedicated practice focusing on Smart Cities and the transportation and technology that connects them. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in 1998, IOActive is headquartered in Seattle, US, with global operations through the Americas, EMEA, and Asia Pac regions. Visit www.ioactive.com for more information. Follow IOActive on Twitter: http://twitter.com/ioactive.
###