Non-volatile memory and disks: Avenues for policy architectures

Kevin R.B. Butler, Stephen E. McLaughlin, Patrick D. McDaniel

Research output: Chapter in Book/Report/Conference proceedingConference contribution

6 Scopus citations

Abstract

As computing models change, so too do the demands on storage. Distributed and virtualized systems introduce new vulnerabilities, assumptions, and performance requirements on disks. However, traditional storage systems have very limited capacity to implement needed "advanced storage" features such as integrity and data isolation. This is largely due to the simple interfaces and limited computing resources provided by commodity hard-drives. A new generation of storage devices affords better opportunities to meet these new models, but little is known about how to exploit them. In this paper, we show that the recently introduced fast-access non-volatile RAM-enhanced hybrid (HHD) disk architectures can be used to implement a range of valuable storage-security services. We specifically discuss the use of these new architectures to provide data integrity, capability-based access control, and labeled information flow at the disk access layer. In this, we introduce systems that place a security perimeter at the disk interface - and deal with the parent operating system only as a largely untrusted entity.

Original languageEnglish (US)
Title of host publicationCSAW'07 - Proceedings of the 2007 ACM Computer Security Architecture Workshop
PublisherAssociation for Computing Machinery
Pages77-84
Number of pages8
ISBN (Print)9781595938909
DOIs
StatePublished - 2007
Event1st ACM Computer Security Architectures Workshop, CSAW'07, held in association with the 14th ACM Computer and Communications Security Conference, CCS'07 - Fairfax, VA, United States
Duration: Nov 2 2007Nov 2 2007

Publication series

NameProceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)1543-7221

Other

Other1st ACM Computer Security Architectures Workshop, CSAW'07, held in association with the 14th ACM Computer and Communications Security Conference, CCS'07
Country/TerritoryUnited States
CityFairfax, VA
Period11/2/0711/2/07

All Science Journal Classification (ASJC) codes

  • Software
  • Computer Networks and Communications

Cite this