BlueHat Security Briefing: Fall 2014 Defining and Enforcing Intent Semantics at ABI level - Sergey Bratus & Julian Bangert

Play BlueHat Security Briefing: Fall 2014 Defining and Enforcing Intent Semantics at ABI level - Sergey Bratus & Julian Bangert
Sign in to queue

Description

Defining and Enforcing Intent Semantics at ABI level
Dominant OS security policy designs treat a process as an opaque entity that has a "bag" of permissions to access some OS resources at any time, in any order. Now that the sensitive data that we most want to protect may never touch the filesystem or even cross a process boundary, these designs fail at their purpose. We introduce a design that has a much higher granularity of protection, yet is compatible with existing ABI, standard build chains, and binary utilities.

Download:

Slides

Day:

2

Embed

Download

Download this episode

Download:

The Discussion

Add Your 2 Cents