Advanced Search
CS Search Google Search
Subscribers, please login

Published Articles >> Table of Contents >> Abstract

Publication Home Page
July 2003 (Vol. 36, No. 7)   pp. 55-62
A Trusted Open Platform
Paul England, Microsoft
Butler Lampson, Microsoft Research
John Manferdelli, Microsoft
Marcus Peinado, Microsoft
Bryan Willman, Microsoft
Full Article Text: View linked HTML of full textDownload PDF of full textBuy this articleGet full text from IEEE Xplore

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MC.2003.1212691
Send link to a friend

Abstract
Although administrators can configure a system to restrict access to resources, in a mass-market setting they cannot be sure of the kernel's integrity. The commercial need for an open software and hardware architecture leads to huge and complex operating systems. A single programming error or intentional back door in this code base can open the way for an attack that renders the access-control system ineffective.The authors describe Microsoft’s next-generation secure computing base, a system that offers robust access control through mechanisms for code authentication.
References
[1] B. Lampson, "Protection," Proc. 5th Princeton Symp. Information Sciences and Systems, Princeton Univ., Mar. 1971; reprinted inACM Operating Systems Review, Jan. 1974, pp. 18-24.
[2] J. McLean, "Security Models," Encyclopedia of Software Engineering, 3rd ed., J. Marciniak, ed., Wiley Press, 1994.
[3] E. Meijer and J. Gough, "Technical Overview of the Common Language Runtime," tech. report, Microsoft, 2001; http://research.microsoft.com/~emeijer/Papers CLR.pdf.
[4] P. Johns, "Signing and Marking ActiveX Controls," Developer Network News,15 Oct. 1996; available atmsdn.microsoft.com/.
[5] D.S. Wallach et al., "Extensible Security Architectures for Java," tech. report 546-97, Dept. of Computer Science, Princeton Univ., Apr. 1997.
[6] P. England and M. Peinado, "Authenticated Operation of Open Computing Devices," Proc. 7th Australasian Conf. Information Security and Privacy (ACISP), Springer-Verlag, 2002, pp. 346-361.
[7] M. Bellare and C. Namprempre, "Authenticated Encryption: Relations among Notions and Analysis of the Generic Composition Paradigm," Advances in Cryptology—Asiacrypt 00, Springer-Verlag, 2000, pp. 531-545.
[8] B. Lampson et al., "Authentication in Distributed Systems: Theory and Practice," ACM Trans. Computer Systems, Nov. 1992, pp. 265-310.
[9] R. Goldberg, "Survey of Virtual Machine Research," Computer, June 1974, pp. 34-45.
[10] Trusted Computing Platform Alliance, TCPA Main Specification Version 1.1, 2001.
[11] P. Biddle et al., "The Darknet and the Future of Content Protection," to be published in Proc. 2002 ACM Workshop on Digital Rights Management, Springer-Verlag, 2003.
Additional Information

Citation:  Paul England, Butler Lampson, John Manferdelli, Marcus Peinado, Bryan Willman, "A Trusted Open Platform," Computer, vol. 36,  no. 7,  pp. 55-62,  Jul.,  2003

RSS Feed

Similar Articles

Abstract Contents
Abstract
References
Citation

Download Citation
Ascii Text
BibTex
RefWorks
Procite/RefMan/Endnote




Free access to

  • Abstracts
  • Selected PDFs

Electronic subscribers login to:

  • Access HTML/PDFs of full text articles

Subscription information

Get a Web account

PDFs require Adobe Acrobat Reader.

Peer Review Notice

Give us Feedback