{"title":"TPRIVEXEC:虚拟内存中的私有执行","authors":"J. B. Djoko, B. Jennings, Adam J. Lee","doi":"10.1145/2857705.2857724","DOIUrl":null,"url":null,"abstract":"Private Browsing Mode has become a popular feature in modern browsers. However, despite its prevalence, a similar privacy enhancing technology has not been replicated in other user applications. PrivExec is an operating system service that provides an application-agnostic, system-wide private execution mode. We present TpriVexeC, a novel approach to system-level privacy support that affords faster application execution over PrivExec. TpriVexeC uses memory as its principal backing store but falls back to system swap on high memory pressure. Upon swapping, it encrypts and decrypts private application data as it transits into and out of disk. By doing away with much of persistent disk as primary storage, TpriVexeC provides stronger privacy guarantees and faster application runtime. As shown by our evaluation, TpriVexeC application performance is indistinguishable from a vanilla system and compared to PrivExec, it is up to 30 times faster in writes and 38 times faster in reads for I/O bound tasks.","PeriodicalId":377412,"journal":{"name":"Proceedings of the Sixth ACM Conference on Data and Application Security and Privacy","volume":"34 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-03-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"TPRIVEXEC: Private Execution in Virtual Memory\",\"authors\":\"J. B. Djoko, B. Jennings, Adam J. Lee\",\"doi\":\"10.1145/2857705.2857724\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Private Browsing Mode has become a popular feature in modern browsers. However, despite its prevalence, a similar privacy enhancing technology has not been replicated in other user applications. PrivExec is an operating system service that provides an application-agnostic, system-wide private execution mode. We present TpriVexeC, a novel approach to system-level privacy support that affords faster application execution over PrivExec. TpriVexeC uses memory as its principal backing store but falls back to system swap on high memory pressure. Upon swapping, it encrypts and decrypts private application data as it transits into and out of disk. By doing away with much of persistent disk as primary storage, TpriVexeC provides stronger privacy guarantees and faster application runtime. As shown by our evaluation, TpriVexeC application performance is indistinguishable from a vanilla system and compared to PrivExec, it is up to 30 times faster in writes and 38 times faster in reads for I/O bound tasks.\",\"PeriodicalId\":377412,\"journal\":{\"name\":\"Proceedings of the Sixth ACM Conference on Data and Application Security and Privacy\",\"volume\":\"34 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-03-09\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the Sixth ACM Conference on Data and Application Security and Privacy\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/2857705.2857724\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the Sixth ACM Conference on Data and Application Security and Privacy","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2857705.2857724","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Private Browsing Mode has become a popular feature in modern browsers. However, despite its prevalence, a similar privacy enhancing technology has not been replicated in other user applications. PrivExec is an operating system service that provides an application-agnostic, system-wide private execution mode. We present TpriVexeC, a novel approach to system-level privacy support that affords faster application execution over PrivExec. TpriVexeC uses memory as its principal backing store but falls back to system swap on high memory pressure. Upon swapping, it encrypts and decrypts private application data as it transits into and out of disk. By doing away with much of persistent disk as primary storage, TpriVexeC provides stronger privacy guarantees and faster application runtime. As shown by our evaluation, TpriVexeC application performance is indistinguishable from a vanilla system and compared to PrivExec, it is up to 30 times faster in writes and 38 times faster in reads for I/O bound tasks.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
