Abstract
This work explores the principles and practice of isolating low-level device drivers in order to improve OS dependability. In particular, we explore the operations drivers can perform and how fault propagation in the event a bug is triggered can be prevented. We have prototyped our ideas in an open-source multiserver OS (MINIX 3) that isolates drivers by strictly enforcing least authority and iteratively refined our isolation techniques using a pragmatic approach based on extensive software-implemented fault-injection (SWIFI) testing. In the end, out of 3,400,000 common faults injected randomly into 4 different Ethernet drivers using both programmed I/O and DMA, no fault was able to break our protection mechanisms and crash the OS. In total, we experienced only one hang, but this appears to be caused by buggy hardware. ©2009 IEEE.
Author supplied keywords
Cite
CITATION STYLE
Herder, J. N., Bos, H., Gras, B., Homburg, P., & Tanenbaum, A. S. (2009). Fault isolation for device drivers. In Proceedings of the International Conference on Dependable Systems and Networks (pp. 33–42). https://doi.org/10.1109/DSN.2009.5270357
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
