Treffer: Enhancing a Dependable Multiserver Operating System with Temporal Protection via Resource Reservations

Title:
Enhancing a Dependable Multiserver Operating System with Temporal Protection via Resource Reservations
Authors:
Mancin, Antonio, Lipari, Giuseppe, Herder, Jorrit N., Gras, Ben, Tanenbaum, Andrew S.
Contributors:
Scuola Universitaria Superiore Sant'Anna = Sant'Anna School of Advanced Studies [Pisa] (SSSUP), Department of Computer Science [Amsterdam], Vrije Universiteit Amsterdam [Amsterdam] (VU), Isabelle Puaut, Giorgio Buttazzo and Pascale Minet
Source:
16th International Conference on Real-Time and Network Systems (RTNS 2008), Isabelle Puaut, Oct 2008, Rennes, France
Publisher Information:
HAL CCSD, 2008.
Publication Year:
2008
Collection:
collection:RTNS2008
Subject Terms:
ACM: C.: Computer Systems Organization, C.3: SPECIAL-PURPOSE AND APPLICATION-BASED SYSTEMS, C.3.2: Real-time and embedded systems, ACM: J.: Computer Applications, J.7: COMPUTERS IN OTHER SYSTEMS, J.7.6: Real time, [INFO.INFO-ES]Computer Science [cs], Embedded Systems
Subject Geographic:
Rennes, France
Original Identifier:
HAL:
Document Type:
Konferenz conferenceObject<br />Conference papers
Language:
English
Access URL:
https://inria.hal.science/inria-00336445
https://inria.hal.science/inria-00336445/document
https://inria.hal.science/inria-00336445/file/mancina.pdf
Rights:
info:eu-repo/semantics/OpenAccess
Accession Number:
edshal.inria.00336445v1
Database:
HAL

Weitere Informationen

MINIX 3 is a microkernel-based, multiserver operating system for uniprocessors that is designed to be highly dependable. Servers are restricted according to the principle of least privilege. For example, access to resources such as system memory and device I/O is fully protected. Although MINIX 3 is a potential candidate for embedded platforms, it currently cannot safeguard processes with stringent timing requirements, such as real-time applications. In this paper, we present the design and the implementation of a user-space resource-reservation framework (RRES) in order to augment MINIX 3's dependability infrastructure with temporal protection. In particular, we implemented the Constant Bandwidth Server (CBS), either in Soft or in Hard Reservation (CBS-HR) mode and the Idle-time Reclaiming Improved Server (IRIS) resource reservation algorithms. Important, practical applications of temporal protection include real-time computing as well as prevention of certain denial of service (DoS) attacks that monopolize the CPU. Experiments on a prototype implementation showed improved dependability in the temporal domain.