Show simple item record

dc.contributor.authorHuffmire, Ted
dc.contributor.authorSherwood, Timothy
dc.contributor.authorKastner, Ryan
dc.contributor.authorLevin, Timothy
dc.date.accessioned2012-07-11T15:49:36Z
dc.date.available2012-07-11T15:49:36Z
dc.date.issued2008-10-01
dc.identifier.citationComputers and Security, vol. 27, pp. 197-215, October 2008.
dc.identifier.urihttp://hdl.handle.net/10945/7156
dc.description.abstractWhile general-purpose processor based systems are built to enforce memory protection to prevent the unintended sharing of data between processes, current systems built around reconfigurable hardware typically offer no such protection. Several reconfigurable cores are often integrated onto a single chip where they share external resources such as memory. While this enables small form factor and low cost designs, it opens up the opportunity for modules to intercept or even interfere with the operation of one another. We investigate the design and synthesis of a FPGA memory protection mechanism capable of enforcing access control policies and a methodology for translating formal policy descriptions into FPGA enforcement mechanisms. The efficiency of our access language design flow is evaluated in terms of area and cycle time across a variety of security scenarios. We also describe a technique for ensuring that the internal state of the reference monitor cannot be used as a covert storage channel.en_US
dc.publisherComputers and Securityen_US
dc.rightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.en_US
dc.titleEnforcing Memory Policy Specifications in Reconfigurable Hardwareen_US
dc.typeArticleen_US
dc.contributor.departmentComputer Science (CS)
dc.subject.authorReconfigurable hardwareen_US
dc.subject.authorProtection mechanismsen_US
dc.subject.authorSecurity and Privacy Protectionen_US
dc.subject.authorAccess controlsen_US
dc.description.distributionstatementApproved for public release; distribution is unlimited.


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record