Issue No. 05 - September/October (2010 vol. 8)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2010.90
Kevin Butler , Pennsylvania State University, State College
Steve McLaughlin , Pennsylvania State University, State College
Thomas Moyer , Penn State University, University Park
Patrick McDaniel , Pennsylvania State University , University Park
Securing operating systems has become increasingly difficult as their size and complexity continue to grow. New advances in hard disk technologies, however, provide a means for helping to manage this complexity; the new functionality made available at the disk level allows them to be used as security policy enforcement sites that are autonomous from the rest of the system. The proposed SwitchBlade architecture provides isolation for multiple OSs running on a single machine by confining them into segments that users can only access using a physical token. The authors show that the isolation guarantees SwitchBlade provides are equivalent to physically separate systems without the traditional usability burdens.
operating system, security, storage, disks, isolation, SwitchBlade
S. McLaughlin, P. McDaniel, T. Moyer and K. Butler, "New Security Architectures Based on Emerging Disk Functionality," in IEEE Security & Privacy, vol. 8, no. , pp. 34-41, 2010.