@article{M54F43CFC,
title = "Vulnerability Analysis on Kernel Code and Memory Protection in Nested Kernel",
journal = "Journal of KIISE, JOK",
year = "2018",
issn = "2383-630X",
doi = "10.5626/JOK.2018.45.9.873",
author = "Hyunik Kim,Seehwan Yoo",
keywords = "Nested Kernel,secure OS architecture,virtual memory,kernel vulnerability",
abstract = "Nested Kernel is a secure kernel architecture, presented at the 2015 ACM ASPLOS conference, which aims at assuring the lifetime integrity of the kernel. With the conventional off-the-shelf HW-based protection facility, the Nested Kernel significantly improves the security of the system by introducing a new OS kernel architecture. However, our analysis reveals that the current Nested Kernel has some flaws in its implementation for handling direct mapping and the kernel code mapping region. In addition, its integrity can be broken because of the reported security vulnerability. Consequently, the Nested Kernel needs further study for it to be used safely as a security kernel."
}