{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,28]],"date-time":"2025-08-28T12:50:03Z","timestamp":1756385403012,"version":"3.44.0"},"publisher-location":"New York, NY, USA","reference-count":64,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,9,18]],"date-time":"2023-09-18T00:00:00Z","timestamp":1694995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100006374","name":"NSF (National Science Foundation)","doi-asserted-by":"publisher","award":["2146537,2008867"],"award-info":[{"award-number":["2146537,2008867"]}],"id":[{"id":"10.13039\/501100006374","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,9,18]]},"DOI":"10.1145\/3633500.3633507","type":"proceedings-article","created":{"date-parts":[[2023,12,22]],"date-time":"2023-12-22T12:05:31Z","timestamp":1703246731000},"page":"92-101","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Endoprocess: Programmable and Extensible Subprocess Isolation"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-9172-6725","authenticated-orcid":false,"given":"Fangfei","family":"Yang","sequence":"first","affiliation":[{"name":"Rice University, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-6017-0474","authenticated-orcid":false,"given":"Weijie","family":"Huang","sequence":"additional","affiliation":[{"name":"Rice University, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-1479-7069","authenticated-orcid":false,"given":"Kelly","family":"Kaoudis","sequence":"additional","affiliation":[{"name":"Trail of Bits, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6983-0630","authenticated-orcid":false,"given":"Anjo","family":"Vahldiek-Oberwagner","sequence":"additional","affiliation":[{"name":"Intel Labs, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8456-6957","authenticated-orcid":false,"given":"Nathan","family":"Dautenhahn","sequence":"additional","affiliation":[{"name":"Rice University, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,12,22]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2013. CVE-2013-4547. http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-4547"},{"key":"e_1_3_2_1_2_1","unstructured":"2020. Intel\u00ae 64 and IA-32 Architectures Optimization Reference Manual. https:\/\/www.intel.com\/content\/www\/us\/en\/develop\/download\/intel-64-and-ia-32-architectures-optimization-reference-manual.html"},{"key":"e_1_3_2_1_3_1","unstructured":"AGWA. 2020. AGWA\/titus: Totally Isolated TLS Unwrapping Server. https:\/\/github.com\/AGWA\/titus. (Accessed on 07\/07\/2023)."},{"key":"e_1_3_2_1_4_1","volume-title":"Proceedings of the 5th USENIX Symposium on Networked Systems Design and Implementation(NSDI\u201908)","author":"Bittau Andrea","year":"2008","unstructured":"Andrea Bittau, Petr Marchenko, Mark Handley, and Brad Karp. 2008. Wedge: Splitting Applications into Reduced-Privilege Compartments. In Proceedings of the 5th USENIX Symposium on Networked Systems Design and Implementation(NSDI\u201908). USENIX Association, San Francisco, California, 309\u2013322."},{"key":"e_1_3_2_1_5_1","unstructured":"Zack Bloom. 2018. Cloud computing without containers. https:\/\/blog.cloudflare.com\/cloud-computing-without-containers\/"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2014.1"},{"key":"e_1_3_2_1_7_1","volume-title":"Privtrans: Automatically Partitioning Programs for Privilege Separation. In 13th USENIX Security Symposium (USENIX Security 04)","author":"Brumley David","year":"2004","unstructured":"David Brumley and Dawn Song. 2004. Privtrans: Automatically Partitioning Programs for Privilege Separation. In 13th USENIX Security Symposium (USENIX Security 04). USENIX Association, San Diego, CA. https:\/\/www.usenix.org\/conference\/13th-usenix-security-symposium\/privtrans-automatically-partitioning-programs-privilege"},{"key":"e_1_3_2_1_8_1","unstructured":"Center for Internet Security. 2021. The SolarWinds Cyber-Attack: What You Need to Know. https:\/\/www.cisecurity.org\/solarwinds\/"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.12"},{"key":"e_1_3_2_1_10_1","volume-title":"PKU Pitfalls: Attacks on PKU-based Memory Isolation Systems. In 29th USENIX Security Symposium (USENIX Security 20)","author":"Connor Joseph","year":"2020","unstructured":"R.\u00a0Joseph Connor, Tyler McDaniel, Jared\u00a0M. Smith, and Max Schuchard. 2020. PKU Pitfalls: Attacks on PKU-based Memory Isolation Systems. In 29th USENIX Security Symposium (USENIX Security 20) (2020). USENIX Association, 1409\u20131426. https:\/\/www.usenix.org\/conference\/usenixsecurity20\/presentation\/connor"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/2694344.2694386"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/365230.365252"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/2954679.2872366"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/2872362.2872366"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/224056.224076"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/3423211.3425680"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/3445814.3446728"},{"key":"e_1_3_2_1_18_1","unstructured":"google. 2022. gVisor. https:\/\/gvisor.dev\/."},{"volume-title":"The Java language specification","author":"Gosling James","key":"e_1_3_2_1_19_1","unstructured":"James Gosling. 2000. The Java language specification. Addison-Wesley Professional."},{"key":"e_1_3_2_1_20_1","volume-title":"EPK: Scalable and Efficient Memory Protection Keys. In 2022 USENIX Annual Technical Conference (USENIX ATC 22)","author":"Gu Jinyu","year":"2022","unstructured":"Jinyu Gu, Hao Li, Wentai Li, Yubin Xia, and Haibo Chen. 2022. EPK: Scalable and Efficient Memory Protection Keys. In 2022 USENIX Annual Technical Conference (USENIX ATC 22). USENIX Association, Carlsbad, CA, 609\u2013624. https:\/\/www.usenix.org\/conference\/atc22\/presentation\/gu-jinyu"},{"key":"e_1_3_2_1_21_1","unstructured":"Juan\u00a0Andr\u00e9s Guerrero-Saade. 2022. CrateDepression | Rust Supply-Chain Attack Infects Cloud CI Pipelines with Go Malware. https:\/\/www.sentinelone.com\/labs\/cratedepression-rust-supply-chain-attack-infects-cloud-ci-pipelines-with-go-malware\/."},{"key":"e_1_3_2_1_22_1","unstructured":"H2O. 2023. h2o\/neverbleed: privilege separation engine for OpenSSL \/ LibreSSL. https:\/\/github.com\/h2o\/neverbleed. (Accessed on 07\/07\/2023)."},{"key":"e_1_3_2_1_23_1","volume-title":"Hodor: Intra-Process Isolation for High-Throughput Data Plane Libraries. 489\u2013504. https:\/\/www.usenix.org\/conference\/atc19\/presentation\/hedayati-hodor","author":"Hedayati Mohammad","year":"2019","unstructured":"Mohammad Hedayati, Spyridoula Gravani, Ethan Johnson, John Criswell, Michael\u00a0L. Scott, Kai Shen, and Mike Marty. 2019. Hodor: Intra-Process Isolation for High-Throughput Data Plane Libraries. 489\u2013504. https:\/\/www.usenix.org\/conference\/atc19\/presentation\/hedayati-hodor"},{"key":"e_1_3_2_1_24_1","unstructured":"Matt Howard. 2021. 2021 State of the Software Supply Chain: Open Source Security and Dependency Management Take Center Stage. https:\/\/blog.sonatype.com\/2021-state-of-the-software-supply-chain."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978327"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.48550\/ARXIV.2108.03705"},{"key":"e_1_3_2_1_27_1","unstructured":"Intel. 2021. Chapter 18 Control-flow enforcement technology (CET). Vol.\u00a01. Intel 409\u2013422. software.intel.com\/content\/www\/cn\/zh\/develop\/articles\/intel-sdm.html"},{"key":"e_1_3_2_1_28_1","unstructured":"Antti Kantee 2012. Flexible Operating System Internals: The Design and Implementation of the Anykernel and Rump Kernels. (2012)."},{"key":"e_1_3_2_1_29_1","unstructured":"Kelly Kaoudis and Sick Codes. 2021. Rotten Code Aging Standards & Pwning IPv4 Parsing. https:\/\/www.youtube.com\/watch?v=_o1RPJAe4kU"},{"key":"e_1_3_2_1_30_1","volume-title":"Privman: A Library for Partitioning Applications. In 2003 USENIX Annual Technical Conference (USENIX ATC 03)","author":"Kilpatrick Douglas","year":"2003","unstructured":"Douglas Kilpatrick. 2003. Privman: A Library for Partitioning Applications. In 2003 USENIX Annual Technical Conference (USENIX ATC 03). USENIX Association, San Antonio, TX. https:\/\/www.usenix.org\/conference\/2003-usenix-annual-technical-conference\/privman-library-partitioning-applications"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/3492321.3519582"},{"key":"e_1_3_2_1_32_1","volume-title":"Code-Pointer Integrity. In 11th USENIX Symposium on Operating Systems Design and Implementation (OSDI 14)","author":"Kuznetsov Volodymyr","year":"2014","unstructured":"Volodymyr Kuznetsov, Laszlo Szekeres, Mathias Payer, George Candea, R. Sekar, and Dawn Song. 2014. Code-Pointer Integrity. In 11th USENIX Symposium on Operating Systems Design and Implementation (OSDI 14) (Broomfield, CO, 2014-10). USENIX Association, 147\u2013163. https:\/\/www.usenix.org\/conference\/osdi14\/technical-sessions\/presentation\/kuznetsov"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/775265.775268"},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/3503222.3507759"},{"key":"e_1_3_2_1_35_1","volume-title":"Proceedings of the 12th USENIX Conference on Operating Systems Design and Implementation","author":"Litton James","year":"2016","unstructured":"James Litton, Anjo Vahldiek-Oberwagner, Eslam Elnikety, Deepak Garg, Bobby Bhattacharjee, and Peter Druschel. 2016. Light-Weight Contexts: An OS Abstraction for Safety and Performance. In Proceedings of the 12th USENIX Conference on Operating Systems Design and Implementation (Berkeley, CA, USA, 2016) (OSDI\u201916). USENIX Association, 49\u201364. http:\/\/dl.acm.org\/citation.cfm?id=3026877.3026882"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813690"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813690"},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/2490301.2451167"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-45719-2_20"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/2692956.2663188"},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-00470-5_17"},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","unstructured":"Falcon Momot Sergey Bratus Sven\u00a0M. Hallberg and Meredith\u00a0L. Patterson. 2016. The Seven Turrets of Babel: A Taxonomy of LangSec Errors and How to Expunge Them. In 2016 IEEE Cybersecurity Development (SecDev). 45\u201352. https:\/\/doi.org\/10.1109\/SecDev.2016.019","DOI":"10.1109\/SecDev.2016.019"},{"key":"e_1_3_2_1_43_1","volume-title":"Retrofitting Fine Grain Isolation in the Firefox Renderer. In 29th USENIX Security Symposium (USENIX Security 20)","author":"Narayan Shravan","year":"2020","unstructured":"Shravan Narayan, Craig Disselkoen, Tal Garfinkel, Nathan Froyd, Eric Rahm, Sorin Lerner, Hovav Shacham, and Deian Stefan. 2020. Retrofitting Fine Grain Isolation in the Firefox Renderer. In 29th USENIX Security Symposium (USENIX Security 20) (2020-08). USENIX."},{"key":"e_1_3_2_1_44_1","volume-title":"Libmpk: Software Abstraction for Intel Memory Protection Keys (Intel MPK). 241\u2013254. https:\/\/www.usenix.org\/conference\/atc19\/presentation\/park-soyeon","author":"Park Soyeon","year":"2019","unstructured":"Soyeon Park, Sangho Lee, Wen Xu, Hyungon Moon, and Taesoo Kim. 2019. Libmpk: Software Abstraction for Intel Memory Protection Keys (Intel MPK). 241\u2013254. https:\/\/www.usenix.org\/conference\/atc19\/presentation\/park-soyeon"},{"key":"e_1_3_2_1_45_1","volume-title":"Memory Tagging: A Memory Efficient Design. arxiv:2209.00307\u00a0[cs]","author":"Partap Aditi","year":"2022","unstructured":"Aditi Partap and Dan Boneh. 2022. Memory Tagging: A Memory Efficient Design. arxiv:2209.00307\u00a0[cs]"},{"key":"e_1_3_2_1_46_1","volume-title":"Proceedings of the 12th Conference on USENIX Security Symposium -","volume":"12","author":"Provos Niels","year":"2003","unstructured":"Niels Provos, Markus Friedl, and Peter Honeyman. 2003. Preventing Privilege Escalation. In Proceedings of the 12th Conference on USENIX Security Symposium - Volume 12 (Berkeley, CA, USA, 2003) (SSYM\u201903). USENIX Association, 16\u201316. http:\/\/dl.acm.org\/citation.cfm?id=1251353.1251369"},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/3471621.3471839"},{"key":"e_1_3_2_1_48_1","volume-title":"The Protection of Information in Computer Systems. 63, 9","author":"Saltzer H.","year":"1975","unstructured":"Jerome\u00a0H. Saltzer and Michael\u00a0D. Schroeder. 1975. The Protection of Information in Computer Systems. 63, 9 (1975), 1278\u20131308. http:\/\/ieeexplore.ieee.org\/xpls\/abs_all.jsp?arnumber=1451869"},{"key":"e_1_3_2_1_49_1","volume-title":"Jenny: Securing Syscalls for PKU-based Memory Isolation Systems. In 31st USENIX Security Symposium (USENIX Security 22)","author":"Schrammel David","year":"2022","unstructured":"David Schrammel, Samuel Weiser, Richard Sadek, and Stefan Mangard. 2022. Jenny: Securing Syscalls for PKU-based Memory Isolation Systems. In 31st USENIX Security Symposium (USENIX Security 22). USENIX Association, Boston, MA, 936\u2013952. https:\/\/www.usenix.org\/conference\/usenixsecurity22\/presentation\/schrammel"},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510611"},{"key":"e_1_3_2_1_51_1","volume-title":"Deconstructing Xen. In 24th Annual Network and Distributed System Security Symposium","author":"Shi Lei","year":"2017","unstructured":"Lei Shi, Yuming Wu, Yubin Xia, Nathan Dautenhahn, Haibo Chen, Binyu Zang, Haibing Guan, and Jinming Li. 2017. Deconstructing Xen. In 24th Annual Network and Distributed System Security Symposium (San Diego, CA, USA, 2017) (NDSS \u201917). The Internet Society. http:\/\/www.internetsociety.org\/using-replicated-execution-more-secure-and-reliable-web-browser"},{"key":"e_1_3_2_1_52_1","volume-title":"Implementing SELinux as a Linux Security Module. 1, 43","author":"Smalley Stephen","year":"2001","unstructured":"Stephen Smalley, Chris Vance, and Wayne Salamon. 2001. Implementing SELinux as a Linux Security Module. 1, 43 (2001), 139."},{"key":"e_1_3_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.1145\/3381052.3381326"},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.13"},{"key":"e_1_3_2_1_55_1","unstructured":"Zahra Tarkhani and Anil Madhavapeddy. 2020. Enclave-Aware Compartmentalization and Secure Sharing with Sirius. arxiv:2009.01869\u00a0[cs] http:\/\/arxiv.org\/abs\/2009.01869"},{"key":"e_1_3_2_1_56_1","unstructured":"unikraft. 2022. Unikraft\/Unikraft. Unikraft."},{"key":"e_1_3_2_1_57_1","volume-title":"ERIM: Secure, Efficient In-Process Isolation with Protection Keys (MPK). 1221\u20131238. https:\/\/www.usenix.org\/conference\/usenixsecurity19\/presentation\/vahldiek-oberwagner","author":"Vahldiek-Oberwagner Anjo","year":"2019","unstructured":"Anjo Vahldiek-Oberwagner, Eslam Elnikety, Nuno\u00a0O. Duarte, Michael Sammler, Peter Druschel, and Deepak Garg. 2019. ERIM: Secure, Efficient In-Process Isolation with Protection Keys (MPK). 1221\u20131238. https:\/\/www.usenix.org\/conference\/usenixsecurity19\/presentation\/vahldiek-oberwagner"},{"key":"e_1_3_2_1_58_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23131"},{"key":"e_1_3_2_1_59_1","doi-asserted-by":"publisher","DOI":"10.1145\/3492321.3519560"},{"key":"e_1_3_2_1_60_1","unstructured":"WebAssembly Community. 2020. Security - WebAssembly. https:\/\/webassembly.org\/docs\/security\/"},{"key":"e_1_3_2_1_61_1","volume-title":"Whole-Program Privilege and Compartmentalization Analysis with the Object-Encapsulation Model. In 2023 IEEE Security and Privacy Workshops (SPW). IEEE, 1\u201312","author":"Yang Yudi","year":"2023","unstructured":"Yudi Yang, Weijie Huang, Kelly Kaoudis, and Nathan Dautenhahn. 2023. Whole-Program Privilege and Compartmentalization Analysis with the Object-Encapsulation Model. In 2023 IEEE Security and Privacy Workshops (SPW). IEEE, 1\u201312."},{"key":"e_1_3_2_1_62_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2009.25"},{"key":"e_1_3_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1145\/3575693.3575735"},{"key":"e_1_3_2_1_64_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510457.3513044"}],"event":{"name":"NSPW '23: New Security Paradigms Workshop","acronym":"NSPW '23","location":"Segovia Spain"},"container-title":["New Security Paradigms Workshop"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3633500.3633507","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3633500.3633507","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,26]],"date-time":"2025-08-26T19:36:47Z","timestamp":1756237007000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3633500.3633507"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,9,18]]},"references-count":64,"alternative-id":["10.1145\/3633500.3633507","10.1145\/3633500"],"URL":"https:\/\/doi.org\/10.1145\/3633500.3633507","relation":{},"subject":[],"published":{"date-parts":[[2023,9,18]]},"assertion":[{"value":"2023-12-22","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}