Jitk: A Trustworthy In-Kernel Interpreter Infrastructure

  title={Jitk: A Trustworthy In-Kernel Interpreter Infrastructure},
  author={Xi Wang and David Lazar and Nickolai Zeldovich and Adam Chlipala and Zachary Tatlock},
Modern operating systems run multiple interpreters in the kernel, which enable user-space applications to add new functionality or specialize system policies. The correctness of such interpreters is critical to the overall system security: bugs in interpreters could allow adversaries to compromise user-space applications and even the kernel. Jitk is a new infrastructure for building in-kernel interpreters that guarantee functional correctness as they compile user-space policies down to native… CONTINUE READING
Highly Cited
This paper has 38 citations. REVIEW CITATIONS
27 Citations
58 References
Similar Papers


Publications referenced by this paper.
Showing 1-10 of 58 references

SECure COMPuting with filters, Jan

  • W. Drewry
  • 2012
Highly Influential
7 Excerpts

Linux 3.0 bpf jit x86_64

  • M. Koetter
  • 2011
Highly Influential
4 Excerpts

bpf: do not use reciprocal divide, Jan

  • E. Dumazet
  • http://patchwork.ozlabs.org/patch/
  • 2014
Highly Influential
3 Excerpts

Automatically generating inputs of death

  • C. Cadar, D. Dunbar
  • 2014

net: filter: initialize A and X

  • A. Starovoitov
  • http://patchwork.ozlabs. org/patch/341693/
  • 2014
2 Excerpts

net: filter: seccomp: fix wrong decoding of BPF_S_ANC_SECCOMP_LD_W

  • D. Borkmann
  • http: //patchwork.ozlabs.org/patch/339039/
  • 2014
3 Excerpts

Similar Papers

Loading similar papers…