|![[Search]](http://talks.cam.ac.uk/images/search.gif?1209136071)
|![[A-Z Index]](http://talks.cam.ac.uk/images/az.gif?1209136071)
|![[Contact]](http://talks.cam.ac.uk/images/contact.gif?1209136071)
||![[University of Cambridge]](http://talks.cam.ac.uk/images/identifier2.gif?1209136071){kind=small} |
COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring. | ![[Talks.cam]](http://talks.cam.ac.uk/images/talkslogosmall.gif?1209136071) |
University of Cambridge > Talks.cam > Computer Laboratory Systems Research Group Seminar > Wedge: Splitting Applications into Reduced-Privilege Compartments
Wedge: Splitting Applications into Reduced-Privilege CompartmentsAdd to your list(s) Download to your calendar using vCal
If you have a question about this talk, please contact Eiko Yoneki. Most applications today run as single processes, allowing successful attackers to access all of the process’s memory and sensitive data. We intend to reverse this situation by splitting applications into multiple compartments that hold no privileges by default, and allowing programmers to explicitly grant privileges and memory permissions, therefore controlling the damage of potential exploits. Our system Wedge is composed of two synergistic parts: the sthread OS primitives that allow programmers to create default-deny compartments with explicitly set privileges, and Crowbar, a tool that run-time analyzes existing applications to help identify potential sthreads along with their required memory and file descriptor permissions, allowing a simpler migration of existing code to sthreads. We applied sthreads to SSL -enabled Apache protecting the privacy of user data even against a powerful attacker can both exploit large part of the server and also act as a man-in-the-middle in the network; all at a 20—40% performance cost. Finally we describe a userland implementation of sthreads that does not sacrifice performance thanks to the careful (ab)use of UNIX AP Is. Bio: Andrea Bittau is a PhD student at UCL working on operating system support for application security, supervised by Mark Handley and Brad Karp. His past projects include the fragmentation attack for 802.11 WEP networks, where an attacker can spoof and eavesdrop data without needing the WEP key, and developing the first open source Bluetooth sniffer, based on GNU radio. This talk is part of the Computer Laboratory Systems Research Group Seminar series. This talk is included in these lists:
Note that ex-directory lists are not shown. |
Other listsEast Asia Institute Seminars Early Modern British and Irish History Seminar CUiD - Cambridge University International Development SocietyOther talks100 Problems around Scalar Curvature The Galactic Centre: a template for understanding star formation and feedback in a high-pressure environment TODAY Foster Talk - "Paraspeckles, TDP-43 & alternative polyadenylation: how regulation of a membraneless compartment guides cell fate" Intelligence and the frontal lobes Development of a Broadly-Neutralising Vaccine against Blood-Stage P. falciparum Malaria Cambridge-Lausanne Workshop 2018 - Day 2 Katie Field - Symbiotic options for the conquest of land Liver Regeneration in the Damaged Liver The frequency of ‘America’ in America Refugees and Migration Slaying (or at least taming) a dreadful monster: Louis de Serres' treatise of 1625 for women suffering from infertility |
Andrea Bittau (UCL)
Thursday 12 February 2009, 16:00-17:00