Light-Weight Contexts (lwCs) \- provides independent units of protection, privilege, and execution state within a process. \- A process may include

This post is a personal summary of ARMlock: Hardware-based Fault Isolation for ARM. SFI Software Fault Isolation creates a logically separated area c

SVA 프로세서와 장치가 동일한 가상 주소를 사용 -> 주소 변환이 필요 없음 DMA를 위한 page space가 필요 없음 reference PGD Page Global Directory 시작 주소는 control register인 CR3에 담겨있음 (ex) 가상

Kennel Address Space Layout Randomizationprepare_kernel_cred address도 랜덤화Supervisor Mode Access Preventkernel can't access to user level memory(ARM) P

This post is a personal summary of SKEE: A Lightweight Secure Kernel-level Execution Environment for ARM.IsolationFirst step \- Create a protected vi

In Linux \- The topmost region of the address space is reserved for code and data in the operating system. \- The lower region of the address space

This post is a personal summary of SoK: Eternal War in Memory. Error Spatial Error Dereferencing an out-of-bounds pointer causes a so called spatial

Kernel extension A piece of computer software that is loaded into an operating system's central component. Kernel extensions might be used to provide

preprocessor -> compiler -> assembly -> linkerL1 cache \- holds tens of thousands of bytes and can be accessed nearly as fast as the register file.L2

Frame Number \- The current page you are looking for is present.The number of bits required depends on the number of frames. Frame bit is also known

Monolithic kernel vs Microkernel Operating System structure with kernel kernel structure Monolithic-kernel All fucntions exceptfor application is m