Native Client: A Sandbox for Portable, Untrusted x86 Native Code
Top Cited Papers
- 1 May 2009
- conference paper
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
Abstract
This paper describes the design, implementation and evaluation of Native Client, a sandbox for untrusted x86 native code. Native Client aims to give browser-based applications the computational performance of native applications without compromising safety. Native Client uses software fault isolation and a secure runtime to direct system interaction and side effects through interfaces managed by Native Client. Native Client provides operating system portability for binary code while supporting performance-oriented features generally absent from Web application programming environments, such as thread support, instruction set extensions such as SSE, and use of compiler intrinsics and hand-coded assembler. We combine these properties in an open architecture that encourages community review and 3rd-party tools.Keywords
This publication has 17 references indexed in Scilit:
- Recovering device driversACM Transactions on Computer Systems, 2006
- Xen and the art of virtualizationPublished by Association for Computing Machinery (ACM) ,2003
- EROS: a principle-driven operating system from the ground upIEEE Software, 2002
- Sub-operating systemsPublished by Association for Computing Machinery (ACM) ,2002
- Efficient generalized cross-validation with applications to parametric image restoration and resolution enhancementIEEE Transactions on Image Processing, 2001
- Protection wrappersPublished by Association for Computing Machinery (ACM) ,1998
- MiSFIT: constructing safe extensible systemsIEEE Concurrency, 1998
- DiscoACM Transactions on Computer Systems, 1997
- TILPublished by Association for Computing Machinery (ACM) ,1996
- Efficient and language-independent mobile programsACM SIGPLAN Notices, 1996