|![[Search]](http://talks.cam.ac.uk/images/search.gif?1209136071)
|![[A-Z Index]](http://talks.cam.ac.uk/images/az.gif?1209136071)
|![[Contact]](http://talks.cam.ac.uk/images/contact.gif?1209136071)
||![[University of Cambridge]](http://talks.cam.ac.uk/images/identifier2.gif?1209136071){kind=small} |
COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring. | ![[Talks.cam]](http://talks.cam.ac.uk/images/talkslogosmall.gif?1209136071) |
University of Cambridge > Talks.cam > Wednesday Seminars - Department of Computer Science and Technology > Aura: A Programming Language with Authorization and Audit
Aura: A Programming Language with Authorization and AuditAdd to your list(s) Download to your calendar using vCal
If you have a question about this talk, please contact Mateja Jamnik. Existing mechanisms for authorizing and auditing the flow of information in networked computer systems are insufficient to meet the security requirements of high-assurance software systems. Current best practices typically rely on operating-system provided file permissions for authorization and an ad-hoc combination of OS and network-level (e.g. firewall-level) logging to generate audit trails. This talk will describe work on a security-oriented programming language called Aura that attempts to address this problem of auditable information flows in a more principled way. Aura supports a built-in notion of principal and its type system incorporates ideas from authorization logic and information-flow constraints. These features, together with the Aura run-time system, enforce strong information-flow policies while generating good audit trails. These audit trails record access-control decisions (such as uses of downgrading or declassification) that influence how information flows through the system. Aura’s programming model is intended to smoothly integrate information-flow and access control constraints with the cryptographic enforcement mechanisms necessary in a distributed computing environment. This is joint work with Jeff Vaughan, Limin Jia, Karl Mazurak, Jianzhou Zhou, Joseph Schorr, and Luke Zarko. This talk is part of the Wednesday Seminars - Department of Computer Science and Technology series. This talk is included in these lists:
Note that ex-directory lists are not shown. |
Other listsCambridge/Africa Collaborative Research Programme Seminar Series seminars University of Cambridge - Politecnico di TorinoOther talksStructural basis for human mitochondrial DNA replication, repair and antiviral drug toxicity The Warsaw Uprising in Polish Popular Culture after 1989 Beyond truth-as-correspondence: realism for realistic people First order rigidity of higher rank arithmetic lattices (note the nonstandard day) Information Theory, Codes, and Compression Stokes-Smoluchowski-Einstein-Langevin theory for active colloidal suspensions 'Politics in Uncertain Times: What will the world look like in 2050 and how do you know? The Global Warming Sceptic Sustainability of livestock production: water, welfare and woodland Speculations about homological mirror symmetry for affine hypersurfaces The Gopakumar-Vafa conjecture for symplectic manifolds Enhanced Decision Making in Drug Discovery |
Steve Zdancewic - University of Pennsylvania, USA
Wednesday 10 March 2010, 14:15-15:15