David Sehr
David Sehr is technical lead of the Native Client group at Google. Prior to joining Google, he was a Senior Principal Engineer and architect of the Intel Compiler (icc). He has published in several areas of compilers and systems. Dr. Sehr has a bachelors degree in Physics and Math from Butler University and masters and Ph.D. degrees in Computer Science from the University of Illinois at Urbana-Champaign.
Research Areas
Authored Publications
Sort By
Language-Independent Sandboxing of Just-In-Time Compilation and Self-Modifying Code
Preview
Jason Ansel
Petr Marchenko
Úlfar Erlingsson
Elijah Taylor
Brad Chen
Cliff L. Biffle
Bennet S. Yee
ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI), ACM SIGPLAN, New York, NY, USA. (2011)
Adapting Software Fault Isolation to Contemporary CPU Architectures
Robert Muth
Cliff L. Biffle
Victor Khimenko
Egor Pasko
Bennet Yee
Karl Schimpf
Brad Chen
19th USENIX Security Symposium, USENIX (2010), pp. 1-11
Preview abstract
Software Fault Isolation (SFI) is an effective approach
to sandboxing binary code of questionable provenance,
an interesting use case for native plugins in a Web
browser. We present software fault isolation schemes for
ARM and x86-64 that provide control-flow and memory
integrity with average performance overhead of under
5% on ARM and 7% on x86-64. We believe these are the
best known SFI implementations for these architectures,
with significantly lower overhead than previous systems
for similar architectures. Our experience suggests that
these SFI implementations benefit from instruction-level
parallelism, and have particularly small impact for workloads that are data memory-bound, both properties that
tend to reduce the impact of our SFI systems for future
CPU implementations.
View details
Native Client: A Sandbox for Portable, Untrusted x86 Native Code
Bennet Yee
Greg Dardyk
Brad Chen
Robert Muth
Tavis Ormandy
Shiki Okasaka
Neha Narula
Nicholas Fullagar
IEEE Symposium on Security and Privacy (Oakland'09), IEEE, IEEE, 3 Park Avenue, 17th Floor, New York, NY 10016 (2009)
Preview abstract
Native Client is an open-source research technology for running x86 native code in web applications, with the goal of maintaining the browser neutrality, OS portability, and safety that people expect from web apps. We released this project in December 2008 to get feedback from the security and broader open-source communities. We believe that Native Client technology will someday help web developers to create richer and more dynamic browser-based applications.
View details