Related Work

• type-safe languages (Java)

• fault isolation

• code verification (difficult for arbitrary code)

• operating system permission mechanisms

• system call interposition (application filters access to system calls)

• system call interception (inside the kernel)

Many opportunities for further reading!