Skip to main content
Article thumbnail
Location of Repository

2011 IEEE Symposium on Security and Privacy

By Txbox:buildingsecure Efficientsandboxeswith Systemtransactions, Suman Jana, Donald E. Porter and Vitaly Shmatikov

Abstract

Abstract—TXBOX is a new system for sandboxing untrusted applications. It speculatively executes the application in a system transaction, allowing security checks to be parallelized and yielding significant performance gains for techniques such as on-access anti-virus scanning. TXBOX is not vulnerable to TOCTTOU attacks and incorrect mirroring of kernel state. Furthermore, TXBOX supports automatic recovery: if a violation is detected, the sandboxed program is terminated and all of its effects on the host are rolled back. This enables effective enforcement of security policies that span multiple system calls. I

Year: 2013
OAI identifier: oai:CiteSeerX.psu:10.1.1.353.1124
Provided by: CiteSeerX
Download PDF:
Sorry, we are unable to provide the full text but you may find it at the following location(s):
  • http://citeseerx.ist.psu.edu/v... (external link)
  • http://www.ieee-security.org/T... (external link)
  • Suggested articles


    To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.