Search results for "Linux"

showing 10 items of 22 documents

Simurgh

2021

The availability of non-volatile main memory (NVMM) has started a new era for storage systems and NVMM specific file systems can support extremely high data and metadata rates, which are required by many HPC and data-intensive applications. Scaling metadata performance within NVMM file systems is nevertheless often restricted by the Linux kernel storage stack, while simply moving metadata management to the user space can compromise security or flexibility. This paper introduces Simurgh, a hardware-assisted user space file system with decentralized metadata management that allows secure metadata updates from within user space. Simurgh guarantees consistency, durability, and ordering of updat…

MetadataFile systemConsistency (database systems)Shared memoryComputer scienceScalabilityMetadata managementData_FILESUser spaceOperating systemLinux kernelcomputer.software_genrecomputerProceedings of the International Conference for High Performance Computing, Networking, Storage and Analysis
researchProduct

MERCURY: A Transparent Guided I/O Framework for High Performance I/O Stacks

2017

The performance gap between processors and I/O represents a serious scalability limitation for applications running on computing clusters. Parallel file systems often provide mechanisms that allow programmers to disclose their I/O pattern knowledge to the lower layers of the I/O stack through a hints API. This information can be used by the file system to boost the application performance. Unfortunately, programmers rarely make use of these features, missing the opportunity to exploit the full potential of the storage system. In this paper we propose MERCURY, a transparent guided I/O framework able to optimize file I/O patterns in scientific applications, allowing users to control the I/O b…

File systemPOSIXComputer scienceScalabilityNon-blocking I/OOperating systemNetwork File SystemAsynchronous I/OLinux kernelLustre (file system)computer.software_genrecomputer2017 25th Euromicro International Conference on Parallel, Distributed and Network-based Processing (PDP)
researchProduct

Nanovised Control Flow Attestation

2022

This paper presents an improvement of control flow attestation (C-FLAT) for Linux. C-FLAT is a control attestation system for embedded devices. It was implemented as a software executing in ARM’s TrustZone on bare-metal devices. We extend the design and implementation of C-FLAT through the use of a type 2 Nanovisor in the Linux operating system. We call our improved system “C-FLAT Linux”. Compared to the original C-FLAT, C-FLAT Linux reduces processing overheads and is able to detect the SlowLoris attack. We describe the architecture of C-FLAT Linux and provide extensive measurements of its performance in benchmarks and real-world scenarios. In addition, we demonstrate the…

Fluid Flow and Transfer ProcessespääsynvalvontaSoftware_OPERATINGSYSTEMSvirtualisointiProcess Chemistry and TechnologyLinuxhypervisor; ARM; Linux; control flow; SlowLoris; TrustZoneSlowLorisGeneral EngineeringTrustZonecontrol flowComputer Science ApplicationsARMGeneral Materials SciencehypervisortietoturvaInstrumentationApplied Sciences; Volume 12; Issue 5; Pages: 2669
researchProduct

Docker pielietošana darbvirsmas nolūkiem

2021

Maģistra darba mērķis ir izpētīt Docker pielietošanas iespējas darbvirsmas nolūkiem. Tas sniegtu Docker priekšrocības – izolācija, pārnesamība, stabilitāte – darbvirsmas lietojumiem, tādiem kā interneta pārlūkošana, darbs ar dokumentiem vai 3D datorspēles. Atšķirībā no virtualizācijas, šīs priekšrocības nāk bez lieliem veiktspējas zudumiem. Maģistra darbā tiek apskatītas un novērtētas iespējas grafisko lietotņu palaišanai un izmantošanai Docker konteineros uz GNU/Linux un Windows platformām. Tiek veikti veiktspējas un patērēto resursu salīdzinājumi ar pa tiešo uzinstalētām programmām un virtuālajām mašīnām. Tiek lietots x11Docker ietvars un MobaXterm lietotņu attēlošanai. Rezultātā ir iegūt…

DockerDatorzinātneLinuxMobaXtermx11Dockerveiktspēja
researchProduct

Kerberoitu NFSv4-protokolla Jyväskylän yliopiston Linux-työasemaympäristössä

2018

NFS-protokollaa käytetään Linux-tietokoneiden väliseen tiedostojen jakoon. NFS-protokolla on perinteisesti ollut tietoturvan kannalta ongelmallinen ja se soveltuu huonosti moderneihin avoimiin verkkoihin, joissa vaaditaan käyttäjäntunnistusta, tiedon salausta ja tiedon eheyden tarkistamista. Kerberoitu NFSv4-protokolla on NFS-protokollan tietoturvallinen uudempi versio, joka tukee näitä ominaisuuksia. Tässä tutkimuksessa esitellään Jyväskylän yliopistossa käytössä olevaa NFSv4-protokollan teknistä toteutusta. NFS-protocol is used to share data between Linux hosts. NFS-protocol has several security issues and it is problematic in modern open networks, which requires user authentication, data…

LinuxNFSv4-protokollaLinux-työasemaKerberos
researchProduct

Detecting Kernel Vulnerabilities During the Development Phase

2015

Testing is one of the major problems in Linux kernel development cycle. Security analysis and ensuring no new vulnerabilities has been introduced is one of the toughest issues of testing. Kernel developers attempt to find as many security issues as possible before merging with the mainline branch. Failure to detect vulnerabilities will result in vulnerable kernel shipped by distribution and vulnerable systems. The kernel developers can choose between several industrial and open source tools to assist in the development process and shorten the development cycle. (Though not as many as user space developers. Kernel tools are limited and rare compared to user space tools) Some of these tools a…

procfssysfsbusiness.industryComputer scienceLinux kernelKernel virtual address spacecomputer.software_genreKernel (statistics)User spaceOperating systemHybrid kernelSoftware engineeringbusinesscomputerSecure coding2015 IEEE 2nd International Conference on Cyber Security and Cloud Computing
researchProduct

An Efficient NURBS Path Generator for a Open Source CNC

2014

In this paper a NURBS path generator (on the plane XY) is proposed to be developed for those CNC machine tools and robot which are Open Source or Opening Architecture. The goal is to use simple and efficient techniques to manufacture geometries which are very complex, whose main feature is the presence of free-form surfaces and contours. To reach this goal, the NURBS path generator has been optimized in order to enable the user to select among three different options to generate the tool path, using a specific parameter. The three options are respectively called “NURBS interpolation with constant increments of u parameter” (NICU), “NURBS interpolation with constant displacement increments b…

NURBS Path Generator CNC Open Source LinuxCNC InterpolationSettore ING-IND/16 - Tecnologie E Sistemi Di Lavorazione
researchProduct

Hypervisor-Based White Listing of Executables

2019

We describe an efficient system for ensuring code integrity of an operating system (OS), both its own code and application code. The proposed system can protect from an attacker who has full control over the OS kernel. An evaluation of the system's performance suggests the induced overhead is negligible. peerReviewed

operating systemsmicroprogrammingdatabasesvirtualisointiComputer Networks and CommunicationsComputer science0211 other engineering and technologiesListing (computer)02 engineering and technologycomputer.software_genre020204 information systemsMicrocode0202 electrical engineering electronic engineering information engineeringCode (cryptography)Overhead (computing)virtual machine monitorstietoturvaElectrical and Electronic Engineeringimage segmentation021110 strategic defence & security studieskäyttöjärjestelmätLinuxHypervisorcomputer.file_formatmonitoringOperating systemohjelmointiExecutableLawcomputerIEEE Security & Privacy
researchProduct

The hyplet : Joining a Program and a Nanovisor for real-time and Performance

2020

This paper presents the concept of sharing a hyper-visor address space with a standard Linux program. In this work, we add hypervisor awareness to the Linux kernel and execute code in the HYP exception level through using the hyplet. The hyplet is an innovative way to code interrupt service routines and remote procedure calls under ARM. The hyplet provides high performance and run-time predictability. We demonstrate the hyplet implementation using the C programming language on an ARM8v-a platform and under the Linux kernel. We then provide performance measurements, use cases, and security scenarios. peerReviewed

Software_OPERATINGSYSTEMSvirtualisointiLinuxtietoturva
researchProduct

Windows darbstaciju pieslēgšana pie Linux Samba servera

2016

Darba galvenais mērķis ir uzlabot neliela biroja datoru infrastruktūru un nodrošināt vienkāršas mājaslapas uzturēšanas iespējas. Birojā visiem darbiniekiem uz datoriem ir modernas Windows 7, 8.1 un 10 operētājsistēmas, bet nav nodrošināta nekāda iespēja apmainīties ar failiem bez ārējiem datu nesējiem. Kā arī birojā nav servera, līdz ar to visi lietotāji atrodas darba grupā nevis domēnā. Sekas tam ir, ka katrs darbinieks var strādāt tikai pie sava datora, un, datora iespējamo remontdarbu laikā, iespējas strādāt praktiski nav. Līdz ar to varētu tikt ieviests kopējs Linux serveris, kas nodrošinātu domēna, datņu servera un mājaslapas glabāšanas funkcijas. Pēc autora domām, šis risinājums ne ti…

WindowsdomēnsDatorzinātneLinuxUbuntu
researchProduct