Verified protection model of the seL4 microkernel
Authors
NICTA
UNSW
Abstract
This paper presents a machine-checked high-level security analysis of seL4—an evolution of the L4 kernel series targeted to secure, embedded devices. We provide an abstract specification of the seL4 access control system in terms of a classical take-grant model together with a formal proof of how confined subsystems can be enforced. All proofs and specifications in this paper are machine-checked and developed in the interactive theorem prover Isabelle/HOL.
BibTeX Entry
@inproceedings{Elkaduwe_KE_08,
author = {Elkaduwe, Dhammika and Klein, Gerwin and Elphinstone, Kevin},
editor = {{Natarajan Shankar and Jim Woodcock}},
month = oct,
year = {2008},
title = {Verified Protection Model of the {seL4} Microkernel},
address = {Toronto, Canada },
pages = {99--115},
booktitle = {Verified Software: Theories, Tools and Experiments},
paperurl = {https://ts.data61.csiro.au/publications/nicta_full_text/209.pdf},
publisher = {Springer},
isbn = {3540878726}
}
Full text
BibTeX