Verified protection model of the seL4 microkernel

Authors

Dhammika Elkaduwe, Gerwin Klein and Kevin Elphinstone

NICTA, Sydney, Australia
UNSW, Australia

Abstract

This paper presents a machine-checked high-level security analysis of seL4 -- an evolution of the L4 kernel series targeted to secure, embedded devices. We provide an abstract specification of the seL4 access control system together with a formal proof that shows how confined subsystems can be enforced. All proofs and specifications in this paper are developed in the interactive theorem prover Isabelle/HOL.

BibTeX Entry

  @inproceedings{Elkaduwe_GE_08,
    publisher        = {Springer},
    series           = {Lecture Notes in Computer Science},
    author           = {Dhammika Elkaduwe and Gerwin Klein and Kevin Elphinstone},
    month            = {October},
    volume           = {5295},
    editor           = {Jim Woodcock and Natarajan Shankar},
    year             = {2008},
    title            = {Verified Protection Model of the {seL4} Microkernel},
    booktitle        = {Proceedings of Verified Software: Theories, Tools and Experiments 2008},
    pages            = {99--114},
    address          = {Toronto, Canada}
  }

Download

Served by Apache on Linux on seL4