Reto Achermann
Assistant Professor
Systopia Lab
Department of Computer Science
University of British Columbia
Separating Translation from Protection in Address Spaces with Dynamic Remapping
Authors
Reto Achermann, Chris Dalton, Paolo Faraboschi, Moritz Hoffmann, Dejan Milojicic, Geoffrey Ndu, Alexander Richardson, Timothy Roscoe, Adrian L. Shaw and Robert N. M. Watson
Venue
Proceedings of the 16th Workshop on Hot Topics in Operating Systems (HotOS'17)
Links
Abstract
It is time to reconsider memory protection. The emergence of large non-volatile main memories, scalable interconnects, and rack-scale computers running large numbers of small "micro services" creates significant challenges for memory protection based solely on MMU mechanisms. Central to this is a tension between protection and translation: optimizing for translation performance often comes with a cost in protection flexibility.
We argue that a key-based memory protection scheme, complementary to but separate from regular page-level translation, is a better match for this new world. We present MaKC, a new architecture which combines two levels of capability-based protection to scale fine-grained memory protection at both user and kernel level to large numbers of protection domains without compromising efficiency at scale or ease of revocation.
Bibtex
@inproceedings{Achermann:2017:STP,
author = {Achermann, Reto and Dalton, Chris and Faraboschi, Paolo and Hoffmann, Moritz and Milojicic, Dejan and Ndu, Geoffrey and Richardson, Alexander and Roscoe, Timothy and Shaw, Adrian L. and Watson, Robert N. M.},
booktitle = {Proceedings of the 16th Workshop on Hot Topics in Operating Systems},
doi = {10.1145/3102980.3103000},
id = {Achermann:2017:STP},
isbn = {978-1-4503-5068-6},
location = {Whistler, BC, Canada},
pages = {118--124},
publisher = {Association for Computing Machinery},
series = {HotOS'17},
title = {Separating Translation from Protection in Address Spaces with Dynamic Remapping},
url = {https://doi.org/10.1145/3102980.3103000},
year = {2017}
}
