The Secure Virtual Architecture (SVA, formerly called LLVA forlow-level virtual architecture) project is developing a novel framework to improve operating system security and reliability. The two broad goals of the project are (a) to develop a compiler-enforced virtual machine that is safe, low-level, efficient, and capable of hosting a standard C/C++-based operating system and all its applications; and (b) to investigate how this organization can improve overall system security and provide new security capabilities. The SVA approach will provide important capabilities not currently available for widely-used commodity systems, including a "safe execution environment," inescapable logging of kernel activity, and a purely software approach to keep application data secret even from the underlying operating system. The software tools developed under this project will be made available to the research and education communities in operating systems and security.
CT-ISG: Improving System Security with a Compiler-based Virtual Machine for Operating System Kernels