{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,1]],"date-time":"2025-10-01T15:31:40Z","timestamp":1759332700865,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":21,"publisher":"ACM","license":[{"start":{"date-parts":[[2011,4,10]],"date-time":"2011-04-10T00:00:00Z","timestamp":1302393600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2011,4,10]]},"DOI":"10.1145\/1972551.1972557","type":"proceedings-article","created":{"date-parts":[[2011,5,3]],"date-time":"2011-05-03T12:48:54Z","timestamp":1304426934000},"page":"1-6","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":30,"title":["Attack surface reduction for commodity OS kernels"],"prefix":"10.1145","author":[{"given":"Anil","family":"Kurmus","sequence":"first","affiliation":[{"name":"IBM Research - Zurich"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alessandro","family":"Sorniotti","sequence":"additional","affiliation":[{"name":"IBM Research - Zurich"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"R\u00fcdiger","family":"Kapitza","sequence":"additional","affiliation":[{"name":"Friedrich-Alexander University, Erlangen-Nuremberg"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2011,4,10]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1966445.1966451"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920269"},{"key":"e_1_3_2_1_3_1","volume-title":"Probing the Guts of Kprobes,\" in Proceedings of the 2006 Linux Symposium","author":"Mavinakayanahalli A.","year":"2006","unstructured":"A. Mavinakayanahalli , P. Panchamukhi , J. Keniston , A. Keshavamurthy , and M. Hiramatsu , \" Probing the Guts of Kprobes,\" in Proceedings of the 2006 Linux Symposium , 2006 . A. Mavinakayanahalli, P. Panchamukhi, J. Keniston, A. Keshavamurthy, and M. Hiramatsu, \"Probing the Guts of Kprobes,\" in Proceedings of the 2006 Linux Symposium, 2006."},{"key":"e_1_3_2_1_4_1","volume-title":"Linux Kernel Developer Responses to Static Analysis Bug Reports,\" in Proceedings of the 2009 USENIX Annual technical Conference","author":"Guo P. J.","year":"2009","unstructured":"P. J. Guo and D. Engler , \" Linux Kernel Developer Responses to Static Analysis Bug Reports,\" in Proceedings of the 2009 USENIX Annual technical Conference , 2009 . P. J. Guo and D. Engler, \"Linux Kernel Developer Responses to Static Analysis Bug Reports,\" in Proceedings of the 2009 USENIX Annual technical Conference, 2009."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/1070891.1065925"},{"key":"e_1_3_2_1_6_1","volume-title":"Proceedings of the 12th USENIX Security Symposium","author":"Provos N.","year":"2003","unstructured":"N. Provos , \"Improving Host Security with System Call Policies,\" in Proceedings of the 12th USENIX Security Symposium , 2003 . N. Provos, \"Improving Host Security with System Call Policies,\" in Proceedings of the 12th USENIX Security Symposium, 2003."},{"key":"e_1_3_2_1_7_1","volume-title":"A Secure Environment for Untrusted Helper Applications Confining the Wily Hacker,\" in Proceedings of the 6th USENIX Security Symposium","author":"Goldberg I.","year":"1996","unstructured":"I. Goldberg , D. Wagner , R. Thomas , and E. A. Brewer , \" A Secure Environment for Untrusted Helper Applications Confining the Wily Hacker,\" in Proceedings of the 6th USENIX Security Symposium , 1996 . I. Goldberg, D. Wagner, R. Thomas, and E. A. Brewer, \"A Secure Environment for Untrusted Helper Applications Confining the Wily Hacker,\" in Proceedings of the 6th USENIX Security Symposium, 1996."},{"key":"e_1_3_2_1_8_1","volume-title":"IBM TJ Watson research center","author":"Dan A.","year":"1997","unstructured":"A. Dan , A. Mohindra , R. Ramaswami , and D. Sitaram , \" Chakravyuha: A Sandbox Operating System for the Controlled Execution of Alien Code,\" tech. rep ., IBM TJ Watson research center , 1997 . A. Dan, A. Mohindra, R. Ramaswami, and D. Sitaram, \"Chakravyuha: A Sandbox Operating System for the Controlled Execution of Alien Code,\" tech. rep., IBM TJ Watson research center, 1997."},{"key":"e_1_3_2_1_9_1","volume-title":"MAPbox: Using Parameterized Behavior Classes to Confine Untrusted Applications,\" in Proceedings of the 9th USENIX Security Symposium","author":"Acharya A.","year":"2000","unstructured":"A. Acharya and M. Raje , \" MAPbox: Using Parameterized Behavior Classes to Confine Untrusted Applications,\" in Proceedings of the 9th USENIX Security Symposium , 2000 . A. Acharya and M. Raje, \"MAPbox: Using Parameterized Behavior Classes to Confine Untrusted Applications,\" in Proceedings of the 9th USENIX Security Symposium, 2000."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2007.45"},{"key":"e_1_3_2_1_11_1","unstructured":"SELinux. http:\/\/selinuxproject.org\/page\/.  SELinux. http:\/\/selinuxproject.org\/page\/."},{"key":"e_1_3_2_1_12_1","unstructured":"TOMOYO. http:\/\/tomoyo.sourceforge.jp\/.  TOMOYO. http:\/\/tomoyo.sourceforge.jp\/."},{"key":"e_1_3_2_1_13_1","unstructured":"grsecurity. http:\/\/grsecurity.net\/.  grsecurity. http:\/\/grsecurity.net\/."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1127345.1127348"},{"key":"e_1_3_2_1_15_1","volume-title":"Practical Problems in System Call Interposition Based Security Tools,\" in Proceedings of the 10th Network and Distributed Systems Security Symposium (NDSS '03)","author":"Garfinkel T.","year":"2003","unstructured":"T. Garfinkel , \"Traps and Pitfalls : Practical Problems in System Call Interposition Based Security Tools,\" in Proceedings of the 10th Network and Distributed Systems Security Symposium (NDSS '03) , 2003 . T. Garfinkel, \"Traps and Pitfalls: Practical Problems in System Call Interposition Based Security Tools,\" in Proceedings of the 10th Network and Distributed Systems Security Symposium (NDSS '03), 2003."},{"key":"e_1_3_2_1_16_1","volume-title":"A Virtual Machine Introspection Based Architecture for Intrusion Detection,\" in Proceedings of the 10th Network and Distributed Systems Security Symposium (NDSS '03)","author":"Garfinkel T.","year":"2003","unstructured":"T. Garfinkel and M. Rosenblum , \" A Virtual Machine Introspection Based Architecture for Intrusion Detection,\" in Proceedings of the 10th Network and Distributed Systems Security Symposium (NDSS '03) , 2003 . T. Garfinkel and M. Rosenblum, \"A Virtual Machine Introspection Based Architecture for Intrusion Detection,\" in Proceedings of the 10th Network and Distributed Systems Security Symposium (NDSS '03), 2003."},{"key":"e_1_3_2_1_17_1","volume-title":"Copilot - a Coprocessor-based Kernel Runtime Integrity Monitor,\" in Proceedings of the 13th USENIX Security Symposium","author":"Petroni N.","year":"2004","unstructured":"N. Petroni Jr , T. Fraser , J. Molina , and W. Arbaugh , \" Copilot - a Coprocessor-based Kernel Runtime Integrity Monitor,\" in Proceedings of the 13th USENIX Security Symposium , 2004 . N. Petroni Jr, T. Fraser, J. Molina, and W. Arbaugh, \"Copilot - a Coprocessor-based Kernel Runtime Integrity Monitor,\" in Proceedings of the 13th USENIX Security Symposium, 2004."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/1655008.1655022"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/1346281.1346284"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2008.24"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653720"}],"event":{"name":"EuroSys '11: Sixth EuroSys Conference 2011","sponsor":["SIGOPS ACM Special Interest Group on Operating Systems"],"location":"Salzburg Austria","acronym":"EuroSys '11"},"container-title":["Proceedings of the Fourth European Workshop on System Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1972551.1972557","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1972551.1972557","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T11:05:54Z","timestamp":1750244754000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1972551.1972557"}},"subtitle":["trimmed garden plants may attract less bugs"],"short-title":[],"issued":{"date-parts":[[2011,4,10]]},"references-count":21,"alternative-id":["10.1145\/1972551.1972557","10.1145\/1972551"],"URL":"https:\/\/doi.org\/10.1145\/1972551.1972557","relation":{},"subject":[],"published":{"date-parts":[[2011,4,10]]},"assertion":[{"value":"2011-04-10","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}