Skip to main content
SpringerLink
Log in

Research on Microkernel-based Power Dedicated Secure Operating System

  • Published:
Journal of Signal Processing Systems Aims and scope Submit manuscript

A Correction to this article was published on 19 November 2019

This article has been updated

Abstract

Industrial security situation is increasingly serious; operating system security is an important basis for the entire information security. In the industrial security systems, industrial control terminal at the operating system level, lack of a comprehensive security system, unable to adapt to the security situation under the new situation. To effectively solve the above problems, self-controlled safety technology operating system research was critical needed. In the industrial operating system security, operating system security kernel integrity is an important guarantee. Based on NARIsecOS, this paper proposed kernel integrity protection program, and part of the work carried out formal verification. Secure operating system can bring the following goodness: 1) Trojan virus immunity, and against hacker attacks; 2) Greatly reduce the zero-day vulnerabilities; 3) Decentralized management, effectively circumvent a dominant right; 4) Enhance industrial endpoint security protection.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Figure 1
Figure 2
Figure 3
Figure 4

Similar content being viewed by others

Change history

  • 19 November 2019

    The Publisher regrets an error on the printed front cover of the October 2019 issue. The issue numbers were incorrectly listed as Volume 91, Nos. 10-12, October 2019. The correct number should be: "Volume 91, No. 10, October 2019"

References

  1. Shi, E., Perrig A., & Doorn, L.V. (2005). BIND: A fine-grained attestation service for secure distributed systems. Proceedings of the IEEE Symposium on Security and Privacy.

  2. Rohit Sinha (Univ. of California, Berkeley); Sriram Rajamani (Microsoft Research); Sanjit Seshia (Univ. of California, Berkeley); Kapil Vaswani (Microsoft Research):Moat: Verifying confidentiality of enclave programs. Ccs 2017.

  3. F-Secure (2015). F-Secure Blacklight. http://www.f-secure.com/blacklight/blacklight.html.

  4. Sharif, M. I., Lee, W., Cui, W., & Lanzi, A. (2009). Secure in-VM Mon-itoring using hardware virtualization. Proceedings of CCS,

  5. Xiong, X., Tian, D., Liu, P., & Perrig, A. (2011). Practical protection of kernel integrity for commodity OS from untrusted extensions. San Diego, California: NDSS.

    Google Scholar 

  6. Evans, I., Long, F., & Otgonbaatar, U. (2017). Control Jujutsu: On the Weaknesses of Fine-Grained Control Flow Integrity, ccs.

  7. Petroni, N. L., Fraser, T., Walters, A., & Arbaugh, W. A. (2006). An architecture for specification-based detection of se-mantic integrity violations in kernel dynamic data. Proceedings for the 15th USENIX Security Symposium, Vancouver, B.C., Canada.

  8. Xiao, Q., Reiter, M. K., & Zhang Y. (2016). Mitigating storage side channels using statistical privacy mechanisms. Ccs.

  9. Qian, Z., Liu, W., Huang, H. (2013). HybridHP:A verified lightweight approach to provide lifetime kernel integrity surveillance. Chinese Journal of Computers.

  10. S. Owre, J. M. Rushby, and N. Shankar. PVS: A prototype verification system. In Deepak Kapur, editor, 11th International Conference on Automated Deduction(CADE), volume 607 of Lecture Notes in Artificial Intelligence, pp. 748–752, Saratoga, NY, Jun 1992. Springer-Verlag.

    Chapter  Google Scholar 

  11. Coyotos (2010). Website. http://www.coyotos.org.

  12. Northup, E., Sridhar, S., Shapiro, J., Doerrie, M. S. & Miller, M. (2004). Towards a verified,general-purpose operating system kernel. 1st NICTA Workshop on Operating System Verification.

  13. Shapiro, J. S., Smith, J. M., & Farber, D. J. (1999). EROS: A fastcapability system. 17th ACM Symposium on Operating Systems Principles, 170–185.

  14. Robin Project (2010). Website. http://robin.tudos.org.

  15. HendrikTews (2007). Micro hypervisor verification: possible approaches and relevant properties. http://robin.tudos.org/publications/hyperveri.pdf.

  16. Intel Corporation (2018). Intel virtualization technology. website. http://www.intel.com/technology/virtualization/.

  17. Tuch, H., & Klein, G. (2004). Verifying the L4 virtual memory subsystem. In G. Klein (Ed.), Proceedings of the NICTA formal methods workshop on Operating systems verification (pp. 73–97). Australia: National ICT.

    Google Scholar 

  18. Yale Flint Project (2018). Website. http://flint.cs.yale.edu/.

Download references

Author information

Authors and Affiliations

  1. Zhejiang Huayun Information Technology Co. Ltd., Zhejiang, China

    Jun Chen, Deliang Ji & Jia Shi

  2. NARI Group Corporation, State Grid Electric Power Research Institute, Nanjing, China

    Wei Liu & Xiaoliang Lv

  3. School of Computer Science and Engineering, Beihang University, Beijing, China

    Bo Li

Authors
  1. Jun Chen
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Wei Liu
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Xiaoliang Lv
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Deliang Ji
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Jia Shi
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Bo Li
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Bo Li.

Additional information

Publisher’s Note

Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Chen, J., Liu, W., Lv, X. et al. Research on Microkernel-based Power Dedicated Secure Operating System. J Sign Process Syst 91, 1127–1136 (2019). https://doi.org/10.1007/s11265-018-1405-4

Download citation

  • Received:

  • Revised:

  • Accepted:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s11265-018-1405-4

Keywords

Search

Navigation