|
| | | |
Annex: A Middleware for Constructing High-Assurance Software Systems
Newby, T., Grove, D.A., Murray, A.P., Owen, C.A., McCarthy, J. and North, C.
Cross Domain Solutions and Multi-Level Secure systems are becoming more popular as the benefits of merging data from different security levels becomes more widely understood. Software forming the Trusted Computing Base of such systems must maintain isolation between data from differing security levels while providing some means of bridging that isolation under strictly supervised conditions. We cannot expect to be able to build such trustworthy software using contemporary software development tools and techniques.
We describe the Annex Object Capability System, a tiny, security-focused software development framework and middleware for implementing high assurance application software on top of existing highly certified COTS μkernels. By leveraging existing operating system provided process space isolation, we are able to provide the programmer with a simple, familiar environment for building complex, yet truly secure software. |
Cite as: Newby, T., Grove, D.A., Murray, A.P., Owen, C.A., McCarthy, J. and North, C. (2015). Annex: A Middleware for Constructing High-Assurance Software Systems. In Proc. 13th Australasian Information Security Conference (AISC 2015) Sydney, Australia. CRPIT, 161. Welch, I. and Yi, X. Eds., ACS. 25-34 |
(from crpit.com)
(local if available)
|
|