Advanced search options

Advanced Search Options 🞨

Browse by author name (“Author name starts with…”).

Find ETDs with:

in
/  
in
/  
in
/  
in

Written in Published in Earliest date Latest date

Sorted by

Results per page:

Sorted by: relevance · author · university · date | New search

You searched for +publisher:"Universidade Estadual de Campinas" +contributor:("Rigo, Sandro, 1975-"). Showing records 1 – 3 of 3 total matches.

Search Limiters

Last 2 Years | English Only

No search limiters apply to these results.

▼ Search Limiters


Universidade Estadual de Campinas

1. Moreira, João Batista Corrêa Gomes, 1985-. Protection mechanisms against control-flow hijacking attacks = Mecanismos de proteção contra ataques de sequestro de controle de fluxo: Mecanismos de proteção contra ataques de sequestro de controle de fluxo.

Degree: 2016, Universidade Estadual de Campinas

Abstract: Control-flow hijacking attacks have been a known threat to computer systems since the 80s. These attacks typically take place through wrongly implemented memory operations that allow arbitrary corruption of values used to point targets in indirect branches. By modifying these values, attackers redirect control-flow as desired, forcing the execution of malicious routines. Although many solutions have been proposed to disable these threats, attackers have been able to bypass these mechanisms, developing new techniques to launch exploits and compromise systems successfully. From these techniques, Return-Oriented Programming (ROP) attacks stand as the most relevant, as they manage to perform arbitrary Turing-complete computation without the need of code injection in the memory space of the attacked software. Kernel software is also targetable by ROP attacks. Since the introduction of W^X policies and the later mitigation of return-to-user attacks, ROP became the most prominent form of kernel control-flow corruption. As kernel runs with higher privileges that allow full system compromise upon exploitation, hardening this software component against these forms of attack became a valuable asset. In this thesis, we propose, analyze and optimize solutions for control-flow assertion in kernel software. First, we propose kCFI, a fine-grained compiler-based Control-Flow Integrity solution for operating system kernels. This protection computes a kernel control-flow graph and instruments its binary with control-flow assertions to ensure that all indirect branches happen through paths foreseen in the graph. To the best of our knowledge, kCFI is the first fine-grained implementation capable of supporting the Linux kernel, presenting an average performance cost of 8% on micro-benchmarks and 2% on macro-benchmarks, which are the smaller observed overheads for a kernel Control-Flow Integrity solution. Given that Control-Flow Integrity solutions can benefit from dynamic context information to create even more restrictive policies, we finish our work presenting a feasibility analysis for a shadow stack implementation to be used on function return validation, in the kernel. In this study, we first propose a shadow stack architecture design that is compliant with kernel requirements and that can be built on top of kCFI. We also explore two different x86-64 architecture extensions to assess their efficiency on selectively protecting the memory regions used by the shadow stack Advisors/Committee Members: UNIVERSIDADE ESTADUAL DE CAMPINAS (CRUESP), Rigo, Sandro, 1975- (advisor), Kemerlis, Vasileios (coadvisor), Universidade Estadual de Campinas. Instituto de Computação (institution), Programa de Pós-Graduação em Ciência da Computação (nameofprogram), Polychronakis, Michalis (committee member), Pereira, Fernando Magno Quintão (committee member), Geus, Paulo Lício de (committee member), Aranha, Diego de Freitas (committee member).

Subjects/Keywords: Sistemas de segurança; Compiladores (Programas de computador); Sistemas operacionais (Computadores); Security systems; Operating systems (Computers); Compilers (Computer programs)

Record DetailsSimilar RecordsGoogle PlusoneFacebookTwitterCiteULikeMendeleyreddit

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6th Edition):

Moreira, João Batista Corrêa Gomes, 1. (2016). Protection mechanisms against control-flow hijacking attacks = Mecanismos de proteção contra ataques de sequestro de controle de fluxo: Mecanismos de proteção contra ataques de sequestro de controle de fluxo. (Thesis). Universidade Estadual de Campinas. Retrieved from http://repositorio.unicamp.br/jspui/handle/REPOSIP/330966

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16th Edition):

Moreira, João Batista Corrêa Gomes, 1985-. “Protection mechanisms against control-flow hijacking attacks = Mecanismos de proteção contra ataques de sequestro de controle de fluxo: Mecanismos de proteção contra ataques de sequestro de controle de fluxo.” 2016. Thesis, Universidade Estadual de Campinas. Accessed September 24, 2020. http://repositorio.unicamp.br/jspui/handle/REPOSIP/330966.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7th Edition):

Moreira, João Batista Corrêa Gomes, 1985-. “Protection mechanisms against control-flow hijacking attacks = Mecanismos de proteção contra ataques de sequestro de controle de fluxo: Mecanismos de proteção contra ataques de sequestro de controle de fluxo.” 2016. Web. 24 Sep 2020.

Vancouver:

Moreira, João Batista Corrêa Gomes 1. Protection mechanisms against control-flow hijacking attacks = Mecanismos de proteção contra ataques de sequestro de controle de fluxo: Mecanismos de proteção contra ataques de sequestro de controle de fluxo. [Internet] [Thesis]. Universidade Estadual de Campinas; 2016. [cited 2020 Sep 24]. Available from: http://repositorio.unicamp.br/jspui/handle/REPOSIP/330966.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Moreira, João Batista Corrêa Gomes 1. Protection mechanisms against control-flow hijacking attacks = Mecanismos de proteção contra ataques de sequestro de controle de fluxo: Mecanismos de proteção contra ataques de sequestro de controle de fluxo. [Thesis]. Universidade Estadual de Campinas; 2016. Available from: http://repositorio.unicamp.br/jspui/handle/REPOSIP/330966

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation


Universidade Estadual de Campinas

2. Piga, Leonardo de Paula Rosa, 1985-. Modeling, characterization, and optimization of web server power in data centers = Modelagem, caracterização e otimização de potência em centro de dados: Modelagem, caracterização e otimização de potência em centro de dados.

Degree: 2013, Universidade Estadual de Campinas

Abstract: To keep up with an increasing demand for computational resources, IT companies need to build facilities that host hundreds of thousands of computers, the data centers. This environment is highly dependent on electrical energy, a resource that is becoming expensive and limited. In this context, this thesis develops a global data center-level power and performance optimization approach for Web Server data centers. It presents a power measurement framework for commodity servers, develops empirical models for estimating the power consumed by Web servers, and implements one of the global power optimization heuristics on a state-of-the-art, high-density SeaMicro SM15k cluster by AMD. The power measuring framework is composed of a custom made board, which is able to capture the power consumption; a data acquisition device that samples the measured values; and a piece of software that manages the framework. We show a novel method for developing full system Web server power models that prunes model parameters and reduces non-linear relationships among performance measurements and system power. The Web server power models use as parameters performance indicators read from the machine internal performance counters. We evaluate our approach on an AMD Opteron-based Web server and on an Intel i7-based Web server. Our best model displays an average absolute error of 1.92% for the Intel i7 server and 1.46% for AMD Opteron as compared to actual measurements, and 90th percentile for the absolute percent error equals to 2.66% for Intel i7 and 2.08% for AMD Opteron. We deploy the global power management system in a state-of-the-art SeaMicro SM15k cluster. The implementation relies on the concept of Virtual Power States, a combination of CPU utilization rate to the P/C power states available in modern processors, and on our global optimization algorithm called Slack Recovery. We also propose and implement a novel mechanism to control utilization rates in each server, a key aspect of our power/performance optimization system. Experimental results show that our Slack Recovery-based system can reduce up to 16% of the power consumption when compared to the Linux performance governor and 6.7% when compared to the Linux ondemand governor Advisors/Committee Members: UNIVERSIDADE ESTADUAL DE CAMPINAS (CRUESP), Rigo, Sandro, 1975- (advisor), Bergamaschi, Reinaldo Alvarenga (coadvisor), Universidade Estadual de Campinas. Instituto de Computação (institution), Programa de Pós-Graduação em Ciência da Computação (nameofprogram), Navaux, Philippe Olivier Alexandre (committee member), Senger, Hermes (committee member), Madeira, Edmundo Roberto Mauro (committee member), Azevedo, Rodolfo Jardim de (committee member).

Subjects/Keywords: Arquitetura de computador; Centros de processamento de dados; Macromodelagem de potência; World Wide Web (Sistema de recuperação da informação) - Servidores; Energia elétrica - Conservação; Computer architecture; Data processing service centers; Power macromodeling; Web servers; Electric power conservation

Record DetailsSimilar RecordsGoogle PlusoneFacebookTwitterCiteULikeMendeleyreddit

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6th Edition):

Piga, Leonardo de Paula Rosa, 1. (2013). Modeling, characterization, and optimization of web server power in data centers = Modelagem, caracterização e otimização de potência em centro de dados: Modelagem, caracterização e otimização de potência em centro de dados. (Thesis). Universidade Estadual de Campinas. Retrieved from http://repositorio.unicamp.br/jspui/handle/REPOSIP/275608

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16th Edition):

Piga, Leonardo de Paula Rosa, 1985-. “Modeling, characterization, and optimization of web server power in data centers = Modelagem, caracterização e otimização de potência em centro de dados: Modelagem, caracterização e otimização de potência em centro de dados.” 2013. Thesis, Universidade Estadual de Campinas. Accessed September 24, 2020. http://repositorio.unicamp.br/jspui/handle/REPOSIP/275608.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7th Edition):

Piga, Leonardo de Paula Rosa, 1985-. “Modeling, characterization, and optimization of web server power in data centers = Modelagem, caracterização e otimização de potência em centro de dados: Modelagem, caracterização e otimização de potência em centro de dados.” 2013. Web. 24 Sep 2020.

Vancouver:

Piga, Leonardo de Paula Rosa 1. Modeling, characterization, and optimization of web server power in data centers = Modelagem, caracterização e otimização de potência em centro de dados: Modelagem, caracterização e otimização de potência em centro de dados. [Internet] [Thesis]. Universidade Estadual de Campinas; 2013. [cited 2020 Sep 24]. Available from: http://repositorio.unicamp.br/jspui/handle/REPOSIP/275608.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Piga, Leonardo de Paula Rosa 1. Modeling, characterization, and optimization of web server power in data centers = Modelagem, caracterização e otimização de potência em centro de dados: Modelagem, caracterização e otimização de potência em centro de dados. [Thesis]. Universidade Estadual de Campinas; 2013. Available from: http://repositorio.unicamp.br/jspui/handle/REPOSIP/275608

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation


Universidade Estadual de Campinas

3. Albertini, Bruno de Carvalho, 1980-. Metodologias de suporte a verificação e análise de modelos de plataformas em alto nível de abstração: Analysis and verification support methodologies for high abstractions level platforms.

Degree: 2011, Universidade Estadual de Campinas

Abstract: The increasing complexity of high level hardware descriptions has motivated the creation of development methodologies for several years, being the most recent level of abstraction represented by projects based on platforms and on the so called Electronic System Level design (ESL). In this scenario, simultaneously exploring different architectural models, like Systems-on-Chip (SoC), is the key to achieve a good balance on hardware-software partitioning and improve performance of both hardware and software. This requires a platform simulation infrastructure able to simulate at high speeds and high level of abstraction, both software and hardware. SystemC emerged as one of the most widely adopted description languages and, when used with the Transaction Level Modeling (TLM), has been widely recognized as the most suitable for ESL development. One of the most striking features of TLM is the possibility to reuse all the infrastructure platform for the simulation of hardware and software [12]. Integration of the verification into design flow is a key point in a TLM-based methodology. One well-known verification technique is the injection stimuli, used to guide the simulation to borderline states. This kind of functionality is useful to increase the coverage of the verification. The tools currently available for SystemC descriptions do not allow stimuli injection without model modifications, or without the use of a modified SystemC simulation core specially crafted for this task. We could not find any open source tool for debugging, but there are good commercial tools specifically prepared to SystemC model debugging. This thesis proposes three methodologies focused on improving the support for introspection, debug, and analysis of hardware models described in high abstraction level. First one is a methodology using computational reflection, applicable to SystemC descriptions by inserting inspection modules, that we call ReflexBoxes. The second technique is called SignalReplay, an evolution of the first technique focused on the capture, injection, and analysis of data collected by reflection. The last proposed methodology, called Platform Dataflow Analysis (PDFA), aims on the metadata extraction through overloaded type reflection, allowing the designer to use compiler techniques for hardware analysis. The results are presented as experiments, implemented as case studies. These experiments allowed us to evaluate the effectiveness of the proposed techniques that, unlike related work, adhere to what we consider six fundamental principles: (1) are not intrusive regarding any model modifications that may be necessary to implement introspection; (2) do not require any change in simulation environment, compilers, or libraries, including our target language: SystemC; (3) generate minimal overhead in simulation time; (4) provide observability and controllability; (5) are extensible, allowing the adaptation for use in similar work with little or no change in the methodology; and (6) protect the intellectual property of the… Advisors/Committee Members: UNIVERSIDADE ESTADUAL DE CAMPINAS (CRUESP), Rigo, Sandro, 1975- (advisor), Araújo, Guido Costa Souza de, 1962- (coadvisor), Universidade Estadual de Campinas. Instituto de Computação (institution), Programa de Pós-Graduação em Ciência da Computação (nameofprogram), Azevedo, Rodolfo Jardim de (committee member), Centoducatte, Paulo Cesar (committee member), Santos, Luiz Claudio Villar dos (committee member), Calazans, Ney Laert Vilar (committee member).

Subjects/Keywords: Depuração na computação; Reflexão (Computação); Arquitetura de computador; Hardware - Engenharia de sistemas; Debugging in computer science; Reflection (Computer science); Computer architecture; Hardware - Systems engineering

Record DetailsSimilar RecordsGoogle PlusoneFacebookTwitterCiteULikeMendeleyreddit

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6th Edition):

Albertini, Bruno de Carvalho, 1. (2011). Metodologias de suporte a verificação e análise de modelos de plataformas em alto nível de abstração: Analysis and verification support methodologies for high abstractions level platforms. (Thesis). Universidade Estadual de Campinas. Retrieved from http://repositorio.unicamp.br/jspui/handle/REPOSIP/275705

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16th Edition):

Albertini, Bruno de Carvalho, 1980-. “Metodologias de suporte a verificação e análise de modelos de plataformas em alto nível de abstração: Analysis and verification support methodologies for high abstractions level platforms.” 2011. Thesis, Universidade Estadual de Campinas. Accessed September 24, 2020. http://repositorio.unicamp.br/jspui/handle/REPOSIP/275705.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7th Edition):

Albertini, Bruno de Carvalho, 1980-. “Metodologias de suporte a verificação e análise de modelos de plataformas em alto nível de abstração: Analysis and verification support methodologies for high abstractions level platforms.” 2011. Web. 24 Sep 2020.

Vancouver:

Albertini, Bruno de Carvalho 1. Metodologias de suporte a verificação e análise de modelos de plataformas em alto nível de abstração: Analysis and verification support methodologies for high abstractions level platforms. [Internet] [Thesis]. Universidade Estadual de Campinas; 2011. [cited 2020 Sep 24]. Available from: http://repositorio.unicamp.br/jspui/handle/REPOSIP/275705.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Albertini, Bruno de Carvalho 1. Metodologias de suporte a verificação e análise de modelos de plataformas em alto nível de abstração: Analysis and verification support methodologies for high abstractions level platforms. [Thesis]. Universidade Estadual de Campinas; 2011. Available from: http://repositorio.unicamp.br/jspui/handle/REPOSIP/275705

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

.