Covert channels are mentioned many times on this site.
In the following, the code ‘SB’ is put on pointers to pages that deal with the space bank space limit covert channel.
The code ‘ISA’ considers the impact of user mode instructions on covert channels.
- Nondeterminism and Confinement
-
How to specify properties that support determinism
- To Confine an Application
-
A nexus for and introduction to confinement
- Reproducible Execution
- Determinism for Durability (ISA)
- Countering Covert Channels
- Space bank limits show space usage to too many. (SB)
- Confinement bug; Bank Allocation
- Bumping Up Against Space Quotas (SB)
- Whales & Minnows
- Do not despair of confining a whale if you need only confine a minnow.
- Capabilities and Covert Channels
- xxxx
- A Covert Channel
- xxxx
- Synchronizing a Covert Channel
-
Ways to thwart covert channels.
- To Reserve Space
- Proposed fix for bank channel
- Kept Banks
- Removing Policy from the Trusted Code (SB)
- Seeing the Bits in Capabilities
- The Opacity of a Capability
- Data Mufflers
- Bounded data leak.
- Allocating Space, in General
- xxxx (SB)
- Glossary
- top level view
- Pixels, Capabilities
-
Diode access to screen
- Things I might do differently
-
Deterministic clocks and preventing synthetic MP clocks
- Process limit in meter
- Limit how many processes can be under a meter
- The Original Plan for non-prompt Banks
- xxxx (SB)
- Factories
- xxxx
- The Stonewall Defense
- xxxx
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
old clock ideas,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx,
xx
External:
A patent 5,574,912 on a scheduler to avoid covert channels.