Affiliation:
1. University of Cambridge, Cambridge, U.K.
2. Google UK Ltd., London, U.K.
Abstract
Capsicum is a lightweight operating system (OS) capability and sandbox framework planned for inclusion in FreeBSD 9. Capsicum extends, rather than replaces, UNIX APIs, providing new kernel primitives (sandboxed
capability mode
and
capabilities
) and a userspace sandbox API. These tools support decomposition of monolithic UNIX applications into compartmentalized logical applications, an increasingly common goal that is supported poorly by existing OS access control primitives. We demonstrate our approach by adapting core FreeBSD utilities and Google's Chromium Web browser to use Capsicum primitives, and compare the complexity and robustness of Capsicum with other sandboxing techniques.
Publisher
Association for Computing Machinery (ACM)
Cited by
12 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. How Flexible Is CXL's Memory Protection?;Communications of the ACM;2023-11-17
2. Information Flow Tracking for Heterogeneous Compartmentalized Software;Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses;2023-10-16
3. Trusted Heterogeneous Disaggregated Architectures;Proceedings of the 14th ACM SIGOPS Asia-Pacific Workshop on Systems;2023-08-24
4. Capturing the iccMAX calculatorElement: A Case Study on Format Design;2022 IEEE Security and Privacy Workshops (SPW);2022-05
5. The RESTless cloud;Proceedings of the Workshop on Hot Topics in Operating Systems;2021-06