{"id":"https://openalex.org/W3205828860","doi":"https://doi.org/10.1145/3471621.3471839","title":"\u03bcSCOPE: A Methodology for Analyzing Least-Privilege Compartmentalization in Large Software Artifacts","display_name":"\u03bcSCOPE: A Methodology for Analyzing Least-Privilege Compartmentalization in Large Software Artifacts","publication_year":2021,"publication_date":"2021-10-06","ids":{"openalex":"https://openalex.org/W3205828860","doi":"https://doi.org/10.1145/3471621.3471839","mag":"3205828860"},"language":"en","primary_location":{"id":"doi:10.1145/3471621.3471839","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3471621.3471839","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3471621.3471839","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"24th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3471621.3471839","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5037846070","display_name":"Nick Roessler","orcid":"https://orcid.org/0000-0002-9298-8444"},"institutions":[{"id":"https://openalex.org/I36788626","display_name":"California University of Pennsylvania","ror":"https://ror.org/01spssf70","country_code":"US","type":"education","lineage":["https://openalex.org/I36788626"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Nick Roessler","raw_affiliation_strings":["University of Pennsylvania, USA"],"affiliations":[{"raw_affiliation_string":"University of Pennsylvania, USA","institution_ids":["https://openalex.org/I36788626"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5054338146","display_name":"Lucas Atayde","orcid":null},"institutions":[{"id":"https://openalex.org/I74775410","display_name":"Rice University","ror":"https://ror.org/008zs3103","country_code":"US","type":"education","lineage":["https://openalex.org/I74775410"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Lucas Atayde","raw_affiliation_strings":["Rice University, USA"],"affiliations":[{"raw_affiliation_string":"Rice University, USA","institution_ids":["https://openalex.org/I74775410"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5038061670","display_name":"Imani Palmer","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Imani Palmer","raw_affiliation_strings":["Null Hat Security, USA"],"affiliations":[{"raw_affiliation_string":"Null Hat Security, USA","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005035041","display_name":"Derrick McKee","orcid":"https://orcid.org/0000-0003-2357-7139"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Derrick McKee","raw_affiliation_strings":["Purdue University, USA"],"affiliations":[{"raw_affiliation_string":"Purdue University, USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5014424314","display_name":"Jai Prakash Pandey","orcid":"https://orcid.org/0000-0002-7396-1844"},"institutions":[{"id":"https://openalex.org/I4210127875","display_name":"Nvidia (United States)","ror":"https://ror.org/03jdj4y14","country_code":"US","type":"company","lineage":["https://openalex.org/I4210127875"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Jai Pandey","raw_affiliation_strings":["Nvidia, USA"],"affiliations":[{"raw_affiliation_string":"Nvidia, USA","institution_ids":["https://openalex.org/I4210127875"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5006944216","display_name":"Vasileios P. Kemerlis","orcid":"https://orcid.org/0000-0002-6528-437X"},"institutions":[{"id":"https://openalex.org/I175594653","display_name":"John Brown University","ror":"https://ror.org/02ct41q97","country_code":"US","type":"education","lineage":["https://openalex.org/I175594653"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Vasileios P. Kemerlis","raw_affiliation_strings":["Brown University, USA"],"affiliations":[{"raw_affiliation_string":"Brown University, USA","institution_ids":["https://openalex.org/I175594653"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5065116578","display_name":"Mathias Payer","orcid":"https://orcid.org/0000-0001-5054-7547"},"institutions":[{"id":"https://openalex.org/I5124864","display_name":"\u00c9cole Polytechnique F\u00e9d\u00e9rale de Lausanne","ror":"https://ror.org/02s376052","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I5124864"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Mathias Payer","raw_affiliation_strings":["EPFL, Switzerland"],"affiliations":[{"raw_affiliation_string":"EPFL, Switzerland","institution_ids":["https://openalex.org/I5124864"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021649580","display_name":"Adam Bates","orcid":"https://orcid.org/0000-0003-1511-4951"},"institutions":[{"id":"https://openalex.org/I2801919071","display_name":"University of Illinois System","ror":"https://ror.org/05e94g991","country_code":"US","type":"education","lineage":["https://openalex.org/I2801919071"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Adam Bates","raw_affiliation_strings":["University of Illinois, US"],"affiliations":[{"raw_affiliation_string":"University of Illinois, US","institution_ids":["https://openalex.org/I2801919071"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5104018094","display_name":"Jonathan M. Smith","orcid":"https://orcid.org/0000-0003-3309-6603"},"institutions":[{"id":"https://openalex.org/I36788626","display_name":"California University of Pennsylvania","ror":"https://ror.org/01spssf70","country_code":"US","type":"education","lineage":["https://openalex.org/I36788626"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Jonathan M. Smith","raw_affiliation_strings":["University of Pennsylvania, US"],"affiliations":[{"raw_affiliation_string":"University of Pennsylvania, US","institution_ids":["https://openalex.org/I36788626"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5087585086","display_name":"Andr\u00e9 DeHon","orcid":"https://orcid.org/0000-0001-9177-7699"},"institutions":[{"id":"https://openalex.org/I36788626","display_name":"California University of Pennsylvania","ror":"https://ror.org/01spssf70","country_code":"US","type":"education","lineage":["https://openalex.org/I36788626"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Andre DeHon","raw_affiliation_strings":["University of Pennsylvania, United States"],"affiliations":[{"raw_affiliation_string":"University of Pennsylvania, United States","institution_ids":["https://openalex.org/I36788626"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5043375112","display_name":"Nathan Dautenhahn","orcid":"https://orcid.org/0000-0001-8456-6957"},"institutions":[{"id":"https://openalex.org/I74775410","display_name":"Rice University","ror":"https://ror.org/008zs3103","country_code":"US","type":"education","lineage":["https://openalex.org/I74775410"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Nathan Dautenhahn","raw_affiliation_strings":["Rice University, US"],"affiliations":[{"raw_affiliation_string":"Rice University, US","institution_ids":["https://openalex.org/I74775410"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":11,"corresponding_author_ids":["https://openalex.org/A5037846070"],"corresponding_institution_ids":["https://openalex.org/I36788626"],"apc_list":null,"apc_paid":null,"fwci":1.6796,"has_fulltext":true,"cited_by_count":17,"citation_normalized_percentile":{"value":0.87165446,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"296","last_page":"311"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9907000064849854,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10772","display_name":"Distributed systems and fault tolerance","score":0.9760000109672546,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/scope","display_name":"Scope (computer science)","score":0.7702842950820923},{"id":"https://openalex.org/keywords/compartmentalization","display_name":"Compartmentalization (fire protection)","score":0.7642478346824646},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7184589505195618},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5058033466339111},{"id":"https://openalex.org/keywords/privilege","display_name":"Privilege (computing)","score":0.47842270135879517},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.47495460510253906},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.1995161473751068},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.15321996808052063}],"concepts":[{"id":"https://openalex.org/C2778012447","wikidata":"https://www.wikidata.org/wiki/Q1034415","display_name":"Scope (computer science)","level":2,"score":0.7702842950820923},{"id":"https://openalex.org/C110455231","wikidata":"https://www.wikidata.org/wiki/Q897788","display_name":"Compartmentalization (fire protection)","level":3,"score":0.7642478346824646},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7184589505195618},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5058033466339111},{"id":"https://openalex.org/C2780138299","wikidata":"https://www.wikidata.org/wiki/Q3404265","display_name":"Privilege (computing)","level":2,"score":0.47842270135879517},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.47495460510253906},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.1995161473751068},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.15321996808052063},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C181199279","wikidata":"https://www.wikidata.org/wiki/Q8047","display_name":"Enzyme","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3471621.3471839","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3471621.3471839","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3471621.3471839","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"24th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},{"id":"pmh:oai:infoscience.epfl.ch:20.500.14299/248596","is_oa":true,"landing_page_url":"https://infoscience.epfl.ch/handle/20.500.14299/248596","pdf_url":null,"source":{"id":"https://openalex.org/S4306400487","display_name":"Infoscience (Ecole Polytechnique F\u00e9d\u00e9rale de Lausanne)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"conference proceedings"}],"best_oa_location":{"id":"doi:10.1145/3471621.3471839","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3471621.3471839","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3471621.3471839","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"24th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},"sustainable_development_goals":[{"score":0.7200000286102295,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G1741066008","display_name":null,"funder_award_id":"HR0011-18-C-0011, HR001119S0089-AMP-FP-034","funder_id":"https://openalex.org/F4320332180","funder_display_name":"Defense Advanced Research Projects Agency"},{"id":"https://openalex.org/G2531577162","display_name":null,"funder_award_id":"BAAN00014-17-S-B010","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"},{"id":"https://openalex.org/G2629488062","display_name":null,"funder_award_id":"1513687","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G5005340534","display_name":null,"funder_award_id":"HR001119S0089-AMP-FP-034","funder_id":"https://openalex.org/F4320332180","funder_display_name":"Defense Advanced Research Projects Agency"},{"id":"https://openalex.org/G5662811043","display_name":null,"funder_award_id":"StG 850868","funder_id":"https://openalex.org/F4320334678","funder_display_name":"European Research Council"},{"id":"https://openalex.org/G6132254293","display_name":"SaTC: CORE: Medium: Collaborative: Threat-Aware Defense: Evaluating Threats for Continuous Improvement","funder_award_id":"1801601","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G6573288936","display_name":null,"funder_award_id":"CNS-1513687","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G6876133368","display_name":null,"funder_award_id":"CNS-1513687, TWC-1513854, CNS-1801601, CNS-16-57534, CNS-17-50024, CNS-2008867","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G8751232811","display_name":null,"funder_award_id":"CNS-1801601","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G902291276","display_name":null,"funder_award_id":"1513854","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320332180","display_name":"Defense Advanced Research Projects Agency","ror":"https://ror.org/02caytj08"},{"id":"https://openalex.org/F4320334678","display_name":"European Research Council","ror":"https://ror.org/0472cxd90"},{"id":"https://openalex.org/F4320337345","display_name":"Office of Naval Research","ror":"https://ror.org/00rk2pe57"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3205828860.pdf","grobid_xml":"https://content.openalex.org/works/W3205828860.grobid-xml"},"referenced_works_count":56,"referenced_works":["https://openalex.org/W6385438","https://openalex.org/W55937681","https://openalex.org/W136211262","https://openalex.org/W157156687","https://openalex.org/W1972484642","https://openalex.org/W2018983843","https://openalex.org/W2025567609","https://openalex.org/W2031217575","https://openalex.org/W2056073317","https://openalex.org/W2060475972","https://openalex.org/W2065076704","https://openalex.org/W2066459581","https://openalex.org/W2086795351","https://openalex.org/W2086959852","https://openalex.org/W2095881341","https://openalex.org/W2106412703","https://openalex.org/W2106705612","https://openalex.org/W2108625771","https://openalex.org/W2117271294","https://openalex.org/W2117590013","https://openalex.org/W2117798902","https://openalex.org/W2118444975","https://openalex.org/W2121528215","https://openalex.org/W2132185316","https://openalex.org/W2136310957","https://openalex.org/W2138517425","https://openalex.org/W2141365240","https://openalex.org/W2148686658","https://openalex.org/W2157185728","https://openalex.org/W2157514610","https://openalex.org/W2162568437","https://openalex.org/W2511669759","https://openalex.org/W2528661589","https://openalex.org/W2534917055","https://openalex.org/W2577352649","https://openalex.org/W2605597658","https://openalex.org/W2766188225","https://openalex.org/W2792952820","https://openalex.org/W2889959453","https://openalex.org/W2891818413","https://openalex.org/W2912918068","https://openalex.org/W2912938624","https://openalex.org/W2914529228","https://openalex.org/W2921500326","https://openalex.org/W2965588382","https://openalex.org/W2988741178","https://openalex.org/W3009605901","https://openalex.org/W3015513242","https://openalex.org/W3155249046","https://openalex.org/W3166536958","https://openalex.org/W4205353076","https://openalex.org/W4211218509","https://openalex.org/W4235021791","https://openalex.org/W4240658150","https://openalex.org/W4244325127","https://openalex.org/W4250371892"],"related_works":["https://openalex.org/W4234653771","https://openalex.org/W4226193002","https://openalex.org/W4306938366","https://openalex.org/W2026670093","https://openalex.org/W2048904889","https://openalex.org/W2040958228","https://openalex.org/W1990340848","https://openalex.org/W4241523039","https://openalex.org/W3177737022","https://openalex.org/W2360028903"],"abstract_inverted_index":{"By":[0],"prioritizing":[1],"simplicity":[2],"and":[3,60,87,97,109,143],"portability,":[4],"least-privilege":[5,35],"engineering":[6],"has":[7],"been":[8],"an":[9],"afterthought":[10],"in":[11,15,130],"OS":[12],"design,":[13],"resulting":[14],"monolithic":[16],"kernels":[17],"where":[18],"any":[19],"exploit":[20],"leads":[21],"to":[22,63,71,81,94,136],"total":[23],"compromise.":[24],"\u03bcSCOPE":[25,37,69],"(\u201cmicroscope\u201d)":[26],"addresses":[27],"this":[28],"problem":[29],"by":[30,56,75],"automatically":[31],"identifying":[32],"opportunities":[33,114],"for":[34,46,115,147],"separation.":[36,151],"replaces":[38],"expert-driven,":[39],"semi-automated":[40],"analysis":[41,101],"with":[42],"a":[43,48,58],"general":[44],"methodology":[45,70],"exploring":[47],"continuum":[49],"of":[50,117],"security":[51],"vs.":[52],"performance":[53],"design":[54],"points":[55],"adopting":[57],"quantitative":[59,107],"systematic":[61],"approach":[62],"privilege":[64,108,119,139,150],"analysis.":[65],"We":[66,112],"apply":[67],"the":[68,72,78,103,145],"Linux":[73,131],"kernel":[74,80,104],"(1)":[76],"instrumenting":[77],"entire":[79],"gain":[82],"comprehensive,":[83],"fine-grained":[84,138],"memory":[85],"access":[86],"call":[88],"activity;":[89],"(2)":[90],"mapping":[91],"these":[92],"accesses":[93],"semantic":[95],"information;":[96],"(3)":[98],"conducting":[99],"separability":[100],"on":[102],"using":[105],"both":[106],"overhead":[110],"metrics.":[111],"discover":[113],"orders":[116],"magnitude":[118],"reduction":[120],"while":[121],"predicting":[122],"relatively":[123],"low":[124],"overheads\u2014at":[125],"15%":[126],"mediation":[127],"overhead,":[128],"overprivilege":[129],"can":[132],"be":[133],"reduced":[134],"up":[135],"99.8%\u2014suggesting":[137],"separation":[140],"is":[141],"feasible":[142],"laying":[144],"groundwork":[146],"accelerating":[148],"real":[149]},"counts_by_year":[{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":8},{"year":2022,"cited_by_count":2}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}