Ray - A Secure Microkernel Architecture

Stefan Nürnberger, Thomas Feller, Sorin A. Huss

In: Proceedings of the Eighth International Conference on Privacy, Security and Trust. IEEE International Conference on Privacy Security and Trust (PST-2010) August 17-19 Ottawa ON Canada Seiten 3-6 ISBN 978-1-4244-7574-2 IEEE 2010.


In this paper we present a secure micro kernel architecture (called Ray) that was designed from scratch with security goals in mind. It features some traditional security aspects like process isolation, advanced non-standard security aspects like padded non-readable memory boundaries and new contributions like memory gifts and behaviour deviation detection. This theoretical design has been implemented as a proof of concept for x86 based processors including a small set of essential drivers and user land applications in order to verify and test the claims made herein.

nuernberger2010pst_ray.pdf (pdf, 167 KB )

Deutsches Forschungszentrum für Künstliche Intelligenz
German Research Center for Artificial Intelligence