I am a Ph.D. student at Virginia Tech, and Graduate Research Assistant in System Software Research Group working with
Dr. Binoy Ravindran. My research interest is computer systems such as Operating Systems, and Virtualization.
I received my M.S. degree in the Department of Electrical and Computer Engineering at Virginia Tech under Dr. Binoy Ravindran, and B.S. degree in the Department of Computer Engineering at Sungkyunkwan University.
VMware Inc., Intern, Member of Technical Staff -- VM Monitor, home office due to COVID-19 (Summer 2020).
Implement an attestation feature for Virtual Machines using a new HW feature that is available on the latest generation of CPUs, and develop SW that handles encryption keys, verifying Virtual Machine launch measurement, and injecting and reading out private information
from the encrypted guest Operating System, where the data is protected against access by the hypervisor.
libhermitMPK (Intra-Unikernel Isolation with Intel Memory Protection Keys):
Although the isolation between unikernels is generally recognized to be strong, there exists no isolation within a unikernel. This is due to the use of a single and unprotected address space, a basic principle of unikernels from which result various lightweightness and performance benefits. In this project, we propose a new design bringing memory isolation inside a unikernel instance while keeping a single address space. We leverage Intel's Memory Protection Key to do so without impacting the lightweightness and performance benefits of unikernels. We implement our isolation scheme within an existing unikernel and use it to provide isolation between trusted and untrusted components: we isolate (1) safe from unsafe Rust kernel code and (2) kernel from user code.
LibrettOS (A Dynamically Adaptable Multiserver-Library OS):
LibrettOS is an OS design that implements two paradigms to address issues of isolation, recovery ability, and performance. LibrettOS acts as a multiserver OS in its basic form and shares hardware resources through system servers. For selected applications requiring performance, LibrettOS also acts as a library OS where the applications are granted exclusive access to virtual hardware resources such as storage and networking. I implemented a network server as a prototype server of the multiserver OS mode.