Hypernel: A Hardware-Assisted Framework for Kernel Protection without Nested Paging
- Authors
- Kwon, Donghyun; Oh, Kuenwhee; Park, Junmo; Yang, Seungyong; Cho, Yeong pil; Kang, Brent Byunghoon; Paek,Yunheung
- Issue Date
- Jun-2018
- Publisher
- ACM
- Citation
- 2018 55th ACM/ESDA/IEEE Design Automation Conference (DAC), pp.1 - 6
- Indexed
- OTHER
- Journal Title
- 2018 55th ACM/ESDA/IEEE Design Automation Conference (DAC)
- Start Page
- 1
- End Page
- 6
- URI
- https://scholarworks.bwise.kr/hanyang/handle/2021.sw.hanyang/149846
- DOI
- 10.1109/DAC.2018.8465863
- Abstract
- Large OS kernels always suffer from attacks due to their numerous inherent vulnerabilities. To protect the kernel, hypervisors have been employed by many security solutions. However, relying on a hypervisor has a detrimental impact on the system performance due mainly to nested paging. In this paper, we present Hypernel, a security framework combining hardware and software components to address this problem. Hypersec, the software component, provides an isolated execution environment for security solutions, and the hardware monitor component enables a word-granularity monitoring capability on the kernel memory. Our evaluation shows that Hypernel efficiently fulfills the role of a security framework, while imposing mere 3.1% of runtime overhead on the system.
- Files in This Item
-
Go to Link
- Appears in
Collections - 서울 공과대학 > 서울 컴퓨터소프트웨어학부 > 1. Journal Articles

Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.