{"id":"https://openalex.org/W2032580804","doi":"https://doi.org/10.1145/1655077.1655082","title":"Hardware-enforced fine-grained isolation of untrusted code","display_name":"Hardware-enforced fine-grained isolation of untrusted code","publication_year":2009,"publication_date":"2009-11-09","ids":{"openalex":"https://openalex.org/W2032580804","doi":"https://doi.org/10.1145/1655077.1655082","mag":"2032580804"},"language":"en","primary_location":{"id":"doi:10.1145/1655077.1655082","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1655077.1655082","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the first ACM workshop on Secure execution of untrusted code","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5009610512","display_name":"Eugen Leontie","orcid":null},"institutions":[{"id":"https://openalex.org/I193531525","display_name":"George Washington University","ror":"https://ror.org/00y4zzh67","country_code":"US","type":"education","lineage":["https://openalex.org/I193531525"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Eugen Leontie","raw_affiliation_strings":["The George Washington University, Washington, DC, USA","[The George Washington University, Washington DC, USA]"],"affiliations":[{"raw_affiliation_string":"The George Washington University, Washington, DC, USA","institution_ids":["https://openalex.org/I193531525"]},{"raw_affiliation_string":"[The George Washington University, Washington DC, USA]","institution_ids":["https://openalex.org/I193531525"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055170166","display_name":"Gedare Bloom","orcid":"https://orcid.org/0000-0002-5677-7092"},"institutions":[{"id":"https://openalex.org/I193531525","display_name":"George Washington University","ror":"https://ror.org/00y4zzh67","country_code":"US","type":"education","lineage":["https://openalex.org/I193531525"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Gedare Bloom","raw_affiliation_strings":["The George Washington University, Washington, DC, USA","[The George Washington University, Washington DC, USA]"],"affiliations":[{"raw_affiliation_string":"The George Washington University, Washington, DC, USA","institution_ids":["https://openalex.org/I193531525"]},{"raw_affiliation_string":"[The George Washington University, Washington DC, USA]","institution_ids":["https://openalex.org/I193531525"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5003176765","display_name":"Bhagirath Narahari","orcid":null},"institutions":[{"id":"https://openalex.org/I193531525","display_name":"George Washington University","ror":"https://ror.org/00y4zzh67","country_code":"US","type":"education","lineage":["https://openalex.org/I193531525"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Bhagirath Narahari","raw_affiliation_strings":["The George Washington University, Washington, DC, USA","[The George Washington University, Washington DC, USA]"],"affiliations":[{"raw_affiliation_string":"The George Washington University, Washington, DC, USA","institution_ids":["https://openalex.org/I193531525"]},{"raw_affiliation_string":"[The George Washington University, Washington DC, USA]","institution_ids":["https://openalex.org/I193531525"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085312107","display_name":"Rahul Simha","orcid":"https://orcid.org/0000-0002-0689-9411"},"institutions":[{"id":"https://openalex.org/I193531525","display_name":"George Washington University","ror":"https://ror.org/00y4zzh67","country_code":"US","type":"education","lineage":["https://openalex.org/I193531525"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Rahul Simha","raw_affiliation_strings":["The George Washington University, Washington, DC, USA","[The George Washington University, Washington DC, USA]"],"affiliations":[{"raw_affiliation_string":"The George Washington University, Washington, DC, USA","institution_ids":["https://openalex.org/I193531525"]},{"raw_affiliation_string":"[The George Washington University, Washington DC, USA]","institution_ids":["https://openalex.org/I193531525"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5081541206","display_name":"Joseph Zambreno","orcid":"https://orcid.org/0000-0002-0566-5744"},"institutions":[{"id":"https://openalex.org/I173911158","display_name":"Iowa State University","ror":"https://ror.org/04rswrd78","country_code":"US","type":"education","lineage":["https://openalex.org/I173911158"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Joseph Zambreno","raw_affiliation_strings":["Iowa State University, Ames, IA, USA","Iowa state university, Ames, IA, USA"],"affiliations":[{"raw_affiliation_string":"Iowa State University, Ames, IA, USA","institution_ids":["https://openalex.org/I173911158"]},{"raw_affiliation_string":"Iowa state university, Ames, IA, USA","institution_ids":["https://openalex.org/I173911158"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5009610512"],"corresponding_institution_ids":["https://openalex.org/I193531525"],"apc_list":null,"apc_paid":null,"fwci":2.7031,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.90758867,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"11","last_page":"18"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10054","display_name":"Parallel Computing and Optimization Techniques","score":0.9966999888420105,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8709203004837036},{"id":"https://openalex.org/keywords/bookkeeping","display_name":"Bookkeeping","score":0.6068179607391357},{"id":"https://openalex.org/keywords/heap","display_name":"Heap (data structure)","score":0.5897786617279053},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.5264901518821716},{"id":"https://openalex.org/keywords/compiler","display_name":"Compiler","score":0.5187466144561768},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.49451443552970886},{"id":"https://openalex.org/keywords/isolation","display_name":"Isolation (microbiology)","score":0.463060587644577},{"id":"https://openalex.org/keywords/granularity","display_name":"Granularity","score":0.4526616334915161},{"id":"https://openalex.org/keywords/call-stack","display_name":"Call stack","score":0.4446151852607727},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.4364587664604187},{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.4339093267917633},{"id":"https://openalex.org/keywords/machine-code","display_name":"Machine code","score":0.41782838106155396},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3661305904388428},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.3253647983074188},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.21985265612602234},{"id":"https://openalex.org/keywords/stack","display_name":"Stack (abstract data type)","score":0.09926033020019531}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8709203004837036},{"id":"https://openalex.org/C105387459","wikidata":"https://www.wikidata.org/wiki/Q3707847","display_name":"Bookkeeping","level":2,"score":0.6068179607391357},{"id":"https://openalex.org/C134757568","wikidata":"https://www.wikidata.org/wiki/Q274089","display_name":"Heap (data structure)","level":2,"score":0.5897786617279053},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.5264901518821716},{"id":"https://openalex.org/C169590947","wikidata":"https://www.wikidata.org/wiki/Q47506","display_name":"Compiler","level":2,"score":0.5187466144561768},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.49451443552970886},{"id":"https://openalex.org/C2775941552","wikidata":"https://www.wikidata.org/wiki/Q25212305","display_name":"Isolation (microbiology)","level":2,"score":0.463060587644577},{"id":"https://openalex.org/C177774035","wikidata":"https://www.wikidata.org/wiki/Q1246948","display_name":"Granularity","level":2,"score":0.4526616334915161},{"id":"https://openalex.org/C119024030","wikidata":"https://www.wikidata.org/wiki/Q759899","display_name":"Call stack","level":3,"score":0.4446151852607727},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.4364587664604187},{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.4339093267917633},{"id":"https://openalex.org/C115168132","wikidata":"https://www.wikidata.org/wiki/Q55813","display_name":"Machine code","level":3,"score":0.41782838106155396},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3661305904388428},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.3253647983074188},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.21985265612602234},{"id":"https://openalex.org/C9395851","wikidata":"https://www.wikidata.org/wiki/Q177929","display_name":"Stack (abstract data type)","level":2,"score":0.09926033020019531},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C89423630","wikidata":"https://www.wikidata.org/wiki/Q7193","display_name":"Microbiology","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/1655077.1655082","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1655077.1655082","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the first ACM workshop on Secure execution of untrusted code","raw_type":"proceedings-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.168.6415","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.168.6415","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.seas.gwu.edu/%7Esimha/research/Secucode09.pdf","raw_type":"text"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.4300000071525574,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320338279","display_name":"Air Force Office of Scientific Research","ror":"https://ror.org/011e9bt93"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W155462409","https://openalex.org/W183274994","https://openalex.org/W1603231416","https://openalex.org/W1686420892","https://openalex.org/W1825457006","https://openalex.org/W2065076704","https://openalex.org/W2083355374","https://openalex.org/W2099382052","https://openalex.org/W2104225326","https://openalex.org/W2107890513","https://openalex.org/W2108255910","https://openalex.org/W2117115928","https://openalex.org/W2119789280","https://openalex.org/W2122244113","https://openalex.org/W2127784167","https://openalex.org/W2137622193","https://openalex.org/W2148144728","https://openalex.org/W2153950928","https://openalex.org/W2155771881","https://openalex.org/W2159079348","https://openalex.org/W2160351709","https://openalex.org/W2162568437","https://openalex.org/W2224020300","https://openalex.org/W3150612471","https://openalex.org/W4300807510","https://openalex.org/W6638583435","https://openalex.org/W6674330518"],"related_works":["https://openalex.org/W62105794","https://openalex.org/W2066874231","https://openalex.org/W1956783456","https://openalex.org/W2375324011","https://openalex.org/W2053636330","https://openalex.org/W2136651729","https://openalex.org/W2017304482","https://openalex.org/W2324500794","https://openalex.org/W2356604223","https://openalex.org/W2388974621"],"abstract_inverted_index":{"We":[0],"present":[1],"a":[2,34,46,105,152,159],"novel":[3],"combination":[4],"of":[5,17,55,67,75,113,154,172,182],"hardware":[6],"(architecture)":[7],"and":[8,31,72,115,164],"software":[9],"(compiler)":[10],"techniques":[11],"to":[12,41,64,132,142,193],"support":[13],"the":[14,111,147,169],"safe":[15],"execution":[16,114],"untrusted":[18,70],"code.":[19],"While":[20],"other":[21],"efforts":[22],"focus":[23],"on":[24],"isolating":[25],"processes,":[26],"our":[27,102,156],"approach":[28,126],"isolates":[29],"code":[30,173],"data":[32,81,120],"at":[33,88,168],"function":[35,177],"(as":[36],"in,":[37],"C":[38],"function)":[39],"level,":[40],"enable":[42],"fine-grained":[43],"protection":[44,74],"within":[45],"process":[47],"as":[48],"needed":[49],"for":[50,135],"downloaded":[51],"plugins,":[52],"libraries,":[53],"andmodifications":[54],"open-source":[56],"projects.":[57],"Our":[58],"solution":[59,103,157],"also":[60,127],"enforces":[61],"timing":[62],"restrictions":[63],"detect":[65],"denial":[66],"service":[68],"from":[69],"code,":[71],"supports":[73],"dynamically":[76,136],"allocated":[77,137],"memory.":[78],"Because":[79],"bookkeeping":[80,107,119],"can":[82],"become":[83],"substantial":[84],"(permission":[85],"tables":[86],"that":[87,109,199],"their":[89],"finest":[90,170],"granularity":[91,174],"describe":[92],"which":[93,100],"memory":[94],"words":[95],"may":[96],"be":[97,143],"accessed":[98],"by":[99,189],"functions),":[101],"employs":[104],"stack-structured":[106],"mechanism":[108],"tracks":[110],"flow":[112],"automatically":[116],"dispenses":[117],"with":[118],"when":[121],"no":[122],"longer":[123],"needed.":[124],"This":[125],"enables":[128],"an":[129],"architectural":[130],"optimization":[131],"handle":[133],"permissions":[134],"memory,":[138],"allowing":[139],"heap":[140],"blocks":[141],"appropriately":[144],"shared":[145],"across":[146,151],"trust":[148],"boundary.":[149],"Tested":[150],"suite":[153],"benchmarks,":[155],"had":[158],"worst":[160],"case":[161],"12%":[162],"overhead":[163,167,185],"3.5%":[165],"average":[166],"level":[171],"(every":[175],"single":[176],"in":[178],"its":[179],"own":[180],"unit":[181],"isolation).":[183],"The":[184],"is":[186],"easily":[187],"reduced":[188],"using":[190],"trace-driven":[191],"analysis":[192],"combine":[194],"functions":[195],"into":[196],"coarser-grained":[197],"groups":[198],"share":[200],"permissions.":[201]},"counts_by_year":[{"year":2012,"cited_by_count":3}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}