• About ISSO
• Research Areas
• Projects
• Finished Projects and Archive
• Opensource Projects

Finished Projects

Security Infrastructure

AMP: High-performance Active Networking

This project is developing a new software base for Active Network nodes. Referred to as AMP, it will be a platform that allows active code to be executed securely, safely, and with high performance. Efficient execution of active code and constrained execution of active code are both duties that can and should be performed by the machine monitor (also known as the operating system) of an Active Network node. AMP will enable active nodes to control the execution environment of imported active code, so that these executables cannot tamper with the rest of the active node. By realizing these objectives, the AMP project will deliver the technology needed to deploy an Active Network backbone.

Approach:
The AMP system will provide a fast and lightweight execution environment for Active Network nodes, implementing the set of resource abstractions required by Active Network programs. It will provide controlled access to an active node's resources and provide strong separation between Active Network programs, controlling sharing of resources. In addition, AMP will defend against denial-of-service attacks by enforcing resource usage limitations.

The research approach is to build AMP using techniques and software developed by the DARPA-funded exokernel project. The exokernel basis is the result of recent experience that demonstrates physical resources may be managed by user-level applications in ways that allow both efficiency and potential for protection. Rather than being a full operating system, the exokernel is a set of building blocks for the efficient implementation of both operating system abstractions and protection mechanisms. The project will implement a new system that provides the resources required for an Active Network node, using exokernel techniques for providing high-performance, controlled access to physical resources. The implementation will use access constraint primitives to construct new access control mechanisms for the node resources used by Active Network programs.

AMP will allow active programs to be imported and executed on an active node without allowing the node to be compromised by the program. Through an innovative combination of exokernel techniques and careful implementation of security mechanisms, AMP will deliver the performance properties and the security properties required by Active Networking.

Current Plan:

• Develop a security architecture for AMP that maps high-level security requirements onto current or proposed Exokernel protection mechanisms.
• Implement Active Network resource abstractions and protection mechanisms using the Exokernel base.
• Conduct experiments to quantify the performance of each resource implementation or protection mechanism.
• Refine the system architecture to address these limitations and serve as a blueprint for Active Network node implementation.

Resources:
The Quad Chart provides a one page view including the architecture diagram, new ideas, impact, and schedule.