- Exokernel: An Operating System Architecture for
Application-Level Resource Management, SOSP 1995
- Application Performance and Flexibility on Exokernel Systems, SOSP 1997
-
Efficient Software-Based Fault Isolation, SOSP 1993
- Dune: Safe User-level Access to Privileged CPU Features, SOSP 2013
-
Shielding Applications from an Untrusted Cloud with Haven, OSDI 2014
- Bugs as Deviant Behavior:
A General Approach to Inferring Errors in Systems Code, SOSP 2001
-
A Differential Approach to Undefined Behavior Detection, TOCS 2015
- seL4 Reference Manual, December 2016
-
Comprehensive Formal Verification of an OS Microkernel, TOCS 2014
- Capsicum: practical capabilities for UNIX, USENIX Security 2010
-
Information Flow Control for Standard OS Abstractions, SOSP 2007
- Detecting Past and Present Intrusions through Vulnerability-Specific Predicates, SOSP 2005
-
R2: An Application-Level Kernel for Record and Replay, OSDI 2008
- All File Systems Are Not Created Equal:
On the Complexity of Crafting Crash-Consistent Applications, OSDI 2014
-
Generalized File System Dependencies, SOSP 2007
- An Analysis of Linux Scalability to Many Cores, OSDI 2010
- The Scalable Commutativity Rule: Designing Scalable Software
for Multicore Processors, TOCS 2015