web commit by NealWalfield: Create.

author: GNU Hurd wiki engine <web-hurd@gnu.org> 2007-08-19 15:51:59 +0000
committer: GNU Hurd wiki engine <web-hurd@gnu.org> 2007-08-19 15:51:59 +0000
commit: 0180752439d3f5fdfe60ebad7d212723c4cc3ede (patch)
tree: 9fa8d772c25193fbc152d43c3e6b3f5fd6bd6358 /sfi.mdwn
parent: 43dae598b2e0138dcb7bebf13a04ad8ff3185aad (diff)
download: web-0180752439d3f5fdfe60ebad7d212723c4cc3ede.tar.gz
web-0180752439d3f5fdfe60ebad7d212723c4cc3ede.tar.bz2
web-0180752439d3f5fdfe60ebad7d212723c4cc3ede.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/sfi.mdwn b/sfi.mdwn
new file mode 100644
index 00000000..19b71237
--- /dev/null
+++ b/sfi.mdwn
@@ -0,0 +1,8 @@
+SFI stands for Software-Based Fault Isolation.  SFI is an isolation
+technique described by Wahbe et al. in their 1993 paper [Effcient
+Software-Based Fault Isolation](http://citeseer.ist.psu.edu/wahbe93efficient.html).
+Instead of running code is a separate process, untrusted code
+is loaded into into the host's address space, part of the address
+space is reserved to the application and referred to as its fault
+domain, and the code is rewritten such that it cannot modify or jump
+to addresses outside of its fault domain.
author	GNU Hurd wiki engine <web-hurd@gnu.org>	2007-08-19 15:51:59 +0000
committer	GNU Hurd wiki engine <web-hurd@gnu.org>	2007-08-19 15:51:59 +0000
commit	0180752439d3f5fdfe60ebad7d212723c4cc3ede (patch)
tree	9fa8d772c25193fbc152d43c3e6b3f5fd6bd6358 /sfi.mdwn
parent	43dae598b2e0138dcb7bebf13a04ad8ff3185aad (diff)
download	web-0180752439d3f5fdfe60ebad7d212723c4cc3ede.tar.gz web-0180752439d3f5fdfe60ebad7d212723c4cc3ede.tar.bz2 web-0180752439d3f5fdfe60ebad7d212723c4cc3ede.zip