BlueHat Security Briefing: Fall 2014 Defining and Enforcing Intent Semantics at ABI level - Sergey Bratus & Julian Bangert
Defining and Enforcing Intent Semantics at ABI level
Dominant OS security policy designs treat a process as an opaque entity that has a "bag" of permissions to access some OS resources at any time, in any order. Now that the sensitive data that we most want to protect may never touch the filesystem or even cross a process boundary, these designs fail at their purpose. We introduce a design that has a much higher granularity of protection, yet is compatible with existing ABI, standard build chains, and binary utilities.