ECOOP 2018
Sun 15 - Sat 21 July 2018 Amsterdam, Netherlands
co-located with ECOOP and ISSTA
Thu 19 Jul 2018 16:00 - 16:37 at Paris - SALAD 3 Chair(s): Jan Vitek

Linux kernel contains a large number of features that not all systems need, while Linux distributors enable as many features as possible to make their distributions generic, leading to severe bloating problem. Intuitively, we can use the existing configuration system to remove unnecessary features. However, it is unclear whether this system is adequate for kernel debloating. In this study, we perform analysis to understand how much security benefit a user can obtain if she performs the kernel debloating through the compile-time configuration. Our study shows that existing configuration system provides a convenient and effective vector to reduce the attack surface while producing a functional kernel. With such result, we plan to spend more effort to build a secure kernel through the compile-time debloating.

Thu 19 Jul

16:00 - 18:30: SALAD - SALAD 3 at Paris
Chair(s): Jan VitekNortheastern University
salad-2018-papers16:00 - 16:37
Mansour Alharthi, Hong HuGeorgia Institute of Technology, Hyungon MoonGeorgia Tech, Taesoo KimGeorgia Tech
salad-2018-papers16:37 - 17:15
Julian DolbyIBM Thomas J. Watson Research Center
salad-2018-papers17:15 - 17:52
Omer TrippGoogle Inc.
salad-2018-papers17:52 - 18:30
Taddeus KroesVrije Universiteit Amsterdam, Anil Altinay, Joseph Nash, Yeoul Na, Stijn VolckaertUniversity of California, Irvine, Herbert Bos, Michael FranzUniversity of California, Irvine, Cristiano Giuffrida