Director of Research (if dissertation) or Advisor (if thesis)
Nicol, David M.
Doctoral Committee Chair(s)
Nicol, David M.
Committee Member(s)
Sanders, William H.
Adve, Vikram S.
Vaidya, Nitin H.
Department of Study
Electrical & Computer Eng
Discipline
Electrical & Computer Engr
Degree Granting Institution
University of Illinois at Urbana-Champaign
Degree Name
Ph.D.
Degree Level
Dissertation
Date of Ingest
2010-05-19T18:32:25Z
Keyword(s)
Trusted systems
High assurance systems
Multilevel security (MLS)
Virtualization
Trusted boot
Trusted networks
Patch management
Trusted graphics
Formal methods
Abstract
High assurance MILS (multiple independent levels of security) and MLS (multilevel security) systems require strict limitation of the interactions between different security compartments based on a security policy. Virtualization can be used to provide a high degree of separation in such systems. This work provides a study of commercial-off-the-shelf (COTS) products to support high assurance MLS systems and designs a candidate architecture based on virtualization and trusted execution to provide strong compartmentalization. We then identify three major security problems in the candidate architecture: the lack of trust in the network, the problem of patch management, and untrusted graphics. We study and solve each of the security gaps in detail. More specifically, we design and evaluate a trusted network architecture for high assurance applications, evaluate an optimal pre-deployment testing time for effective patch management, and finally design, implement, and formally evaluate a trusted graphics subsystem.
Use this login method if you
don't
have an
@illinois.edu
email address.
(Oops, I do have one)
IDEALS migrated to a new platform on June 23, 2022. If you created
your account prior to this date, you will have to reset your password
using the forgot-password link below.
Okhravi_Hamed.pdf
