Title :
SAFE-OS: A secure and usable desktop operating system
Author :
Lesueur, François ; Rezmerita, Ala ; Herault, Thomas ; Peyronnet, Sylvain ; Tixeuil, Sébastien
Author_Institution :
LRI, Univ. Paris-Sud, Orsay, France
Abstract :
Containment of application execution is a key security feature of operating systems. Without strong containment, an attacker who compromises one process may take control of the whole machine. Virtualization technology has been widely used in server systems to strongly isolate various applications or services in different virtual machines; its usage in desktop systems which are much more interactive (interactions with the user and between applications) is a challenging task. In this paper we describe SAFE-OS, a desktop operating system using virtualization technology. SAFE-OS provides a high level of isolation between processes while maintaining a standard user interface that abstracts the underlying complexity.
Keywords :
operating systems (computers); security of data; virtualisation; SAFE-OS; application execution containment; secure desktop operating system; server systems; usable desktop operating system; virtual machines; virtualization technology; Electronic mail; Home appliances; Internet; Postal services; Security; Servers; Virtual machining;
Conference_Titel :
Risks and Security of Internet and Systems (CRiSIS), 2010 Fifth International Conference on
Conference_Location :
Montreal, QC
Print_ISBN :
978-1-4244-8641-0
Electronic_ISBN :
978-1-4244-8642-7
DOI :
10.1109/CRISIS.2010.5764916
