Modern Systems: Security Outline Outline What Weve Been Talking - - PowerPoint PPT Presentation

▶

Dec 15, 2023 478 likes •955 views

Modern Systems: Security Outline Outline What Weve Been Talking About... Introduction What Weve Been Talking About... Introduction What are Security Risks? Introduction Todays Topic Introduction Two Systems

SLIDE 1

Modern Systems: Security

SLIDE 2

Outline

SLIDE 3

Introduction

What We’ve Been Talking About...

○ ○

SLIDE 4

Introduction

What We’ve Been Talking About...

○ ○

SLIDE 5

Introduction

What are Security Risks?

SLIDE 6

Introduction

Today’s Topic

SLIDE 7

Introduction

Two Systems

Nexus Fabric

SLIDE 8

Introduction

Two Systems

Nexus Fabric

SLIDE 9

Outline

SLIDE 10

Background

Trust Establishment

○ ○ ○

SLIDE 11

Background

Authorization

principal: a user, group, system component, computer etc. that a security system trusts implicitly

SLIDE 12

Outline

SLIDE 13

OS approach to security, introduces logical attestation

Nexus [SOSP’11]

SLIDE 14

Nexus

Overview

SLIDE 15

Nexus

Trusted Platform Modules

SLIDE 16

Nexus

The Problem with TPM

○ ○ ○

SLIDE 17

Nexus

Credentials-Based Authorization

○

SLIDE 18

Nexus

Logical Attestation

⇔

SLIDE 19

Nexus

Logical Attestation cont.

SLIDE 20

Nexus

Nexus OS

SLIDE 21

Nexus

Implementation: Nexus OS

SLIDE 22

Nexus

Implementing Logical Attestation Labels

SLIDE 23

Nexus

Introspection & Interpositioning

SLIDE 24

Nexus

Nexus OS

SLIDE 25

Nexus

Applications

SLIDE 26

Nexus

Case Example: Fauxbook

SLIDE 27

Nexus

Evaluation Results

SLIDE 28

Nexus

Evaluation Results

SLIDE 29

Nexus

Evaluation Results

SLIDE 30

Outline

SLIDE 31

PL approach to secure distributed systems

Fabric [SOSP ‘09]

SLIDE 32

Fabric

Overview

SLIDE 33

Fabric

The Big Ideas

○ ○ ○ ○

SLIDE 34

Fabric

What is Information Flow?

SLIDE 35

Fabric

Fabric Architecture

SLIDE 36

Fabric

Security Model: Principals

SLIDE 37

Fabric

Security Model: Principals

SLIDE 38

Fabric

Security Model: Labels

SLIDE 39

Fabric

Security Model: Labels cont.

SLIDE 40

Fabric

Security Model: Labels cont.

SLIDE 41

Fabric

Applications

SLIDE 42

Fabric

Evaluation Results

SLIDE 43

Outline

SLIDE 44

Today

What Happened….

○

Fabric Papers CSF’15, PLAS’14, POST’14, NSDI’14, PLDI’ 12, Oakland’12, CCS’11, CCS’10, Jed’s Thesis, SOSP’09

SLIDE 45

Outline

SLIDE 46

Conclusion

Two Approaches to Trustworthy Computing

SLIDE 47

Conclusion

Modern Systems: Security

Outline

What We’ve Been Talking About...

What We’ve Been Talking About...

What are Security Risks?

Today’s Topic

Two Systems

Two Systems

Outline

Trust Establishment

Authorization

Outline

Nexus [SOSP’11]

Overview

Trusted Platform Modules

The Problem with TPM

Credentials-Based Authorization

Logical Attestation

Logical Attestation cont.

Nexus OS

Implementation: Nexus OS

Implementing Logical Attestation Labels

Introspection & Interpositioning

Nexus OS

Applications

Case Example: Fauxbook

Evaluation Results

Evaluation Results

Evaluation Results

Outline

Fabric [SOSP ‘09]

Overview

The Big Ideas

What is Information Flow?

Fabric Architecture

Security Model: Principals

Security Model: Principals

Security Model: Labels

Security Model: Labels cont.

Security Model: Labels cont.

Applications

Evaluation Results

Outline

What Happened….

Outline

Two Approaches to Trustworthy Computing

What should we trust?