TY  - JOUR
T1  - Vulnerability Analysis on Kernel Code and Memory Protection in Nested Kernel
AU  - Kim, Hyunik 
AU  - Yoo, Seehwan 
JO  - Journal of KIISE, JOK
PY  - 2018
DA  - 2018/1/14
DO  - 10.5626/JOK.2018.45.9.873
KW  - Nested Kernel
KW  - secure OS architecture
KW  - virtual memory
KW  - kernel vulnerability
AB  - Nested Kernel is a secure kernel architecture, presented at the 2015 ACM ASPLOS conference, which aims at assuring the lifetime integrity of the kernel. With the conventional off-the-shelf HW-based protection facility, the Nested Kernel significantly improves the security of the system by introducing a new OS kernel architecture. However, our analysis reveals that the current Nested Kernel has some flaws in its implementation for handling direct mapping and the kernel code mapping region. In addition, its integrity can be broken because of the reported security vulnerability. Consequently, the Nested Kernel needs further study for it to be used safely as a security kernel.