Covert channels are mentioned many times on this site. In the following, the code ‘SB’ is put on pointers to pages that deal with the space bank space limit covert channel. The code ‘ISA’ considers the impact of user mode instructions on covert channels.
Nondeterminism and Confinement
How to specify properties that support determinism
To Confine an Application
A nexus for and introduction to confinement
Reproducible Execution
Determinism for Durability (ISA)
Countering Covert Channels
Space bank limits show space usage to too many. (SB)
Confinement bug; Bank Allocation
Bumping Up Against Space Quotas (SB)
Whales & Minnows
Do not despair of confining a whale if you need only confine a minnow.
Capabilities and Covert Channels
xxxx
A Covert Channel
xxxx
Synchronizing a Covert Channel
Ways to thwart covert channels.
To Reserve Space
Proposed fix for bank channel
Kept Banks
Removing Policy from the Trusted Code (SB)
Seeing the Bits in Capabilities
The Opacity of a Capability
Data Mufflers
Bounded data leak.
Allocating Space, in General
xxxx (SB)
Glossary
top level view
Pixels, Capabilities
Diode access to screen
Things I might do differently
Deterministic clocks and preventing synthetic MP clocks
Process limit in meter
Limit how many processes can be under a meter
The Original Plan for non-prompt Banks
xxxx (SB)
Factories
xxxx
The Stonewall Defense
xxxx

xx, xx, xx, xx, xx, xx, xx, xx, xx, xx, xx, xx, old clock ideas, xx, xx, xx, xx, xx, xx, xx, xx, xx, xx, xx, xx


External:
A patent 5,574,912 on a scheduler to avoid covert channels.