modern systems security outline
play

Modern Systems: Security Outline Outline What Weve Been Talking - PowerPoint PPT Presentation

Dec 15, 2023 •478 likes •955 views

Modern Systems: Security Outline Outline What Weve Been Talking About... Introduction What Weve Been Talking About... Introduction What are Security Risks? Introduction Todays Topic Introduction Two Systems

  1. Modern Systems: Security

  2. Outline Outline

  3. What We’ve Been Talking About... ○ ○ Introduction

  4. What We’ve Been Talking About... ○ ○ Introduction

  5. What are Security Risks? Introduction

  6. Today’s Topic Introduction

  7. Two Systems Nexus Fabric Introduction

  8. Two Systems Nexus Fabric Introduction

  9. Outline Outline

  10. Trust Establishment ○ ○ ○ Background

  11. Authorization principal : a user, group, system component, computer etc. that a security Background system trusts implicitly

  12. Outline Outline

  13. Nexus [SOSP’11] OS approach to security, introduces logical attestation

  14. Overview Nexus

  15. Trusted Platform Modules Nexus

  16. The Problem with TPM ○ ○ ○ Nexus

  17. Credentials-Based Authorization ○ Nexus

  18. Logical Attestation ⇔ Nexus

  19. Logical Attestation cont. Nexus

  20. Nexus OS Nexus

  21. Implementation: Nexus OS Nexus

  22. Implementing Logical Attestation Labels Nexus

  23. Introspection & Interpositioning Nexus

  24. Nexus OS Nexus

  25. Applications Nexus

  26. Case Example: Fauxbook Nexus

  27. Evaluation Results Nexus

  28. Evaluation Results Nexus

  29. Evaluation Results Nexus

  30. Outline Outline

  31. Fabric [SOSP ‘09] PL approach to secure distributed systems

  32. Overview Fabric

  33. The Big Ideas ○ ○ ○ ○ Fabric

  34. What is Information Flow? Fabric

  35. Fabric Architecture Fabric

  36. Security Model: Principals Fabric

  37. Security Model: Principals Fabric

  38. Security Model: Labels Fabric

  39. Security Model: Labels cont. Fabric

  40. Security Model: Labels cont. Fabric

  41. Applications Fabric

  42. Evaluation Results Fabric

  43. Outline Outline

  44. What Happened…. ○ Fabric Papers CSF’15, PLAS’14, POST’14, NSDI’14, PLDI’ 12, Oakland’12, CCS’11, CCS’10, Jed’s Thesis, SOSP’09 Today

  45. Outline Outline

  46. Two Approaches to Trustworthy Computing Conclusion

  47. What should we trust? Conclusion

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Modern Systems: Security October 8, 2012 Background: Trusted Platform Modules What is a TPM?

Modern Systems: Security October 8, 2012 Background: Trusted Platform Modules What is a TPM?

Modern Systems: Security October 8, 2012 Background: Trusted Platform Modules What is a TPM? 16 Platform Configuration Registers (PCRs) Random Number Generator (RNG) Endorsement Key (EK) burned in hardware What can it do?

575 views • 33 slides
Modern Security Model for Linux Operating Systems Aleksander Zdyb S OFTWARE E NGINEER T IZEN P

Modern Security Model for Linux Operating Systems Aleksander Zdyb S OFTWARE E NGINEER T IZEN P

Aleksander Zdyb Modern Security Model for Linux Operating Systems Aleksander Zdyb S OFTWARE E NGINEER T IZEN P LATFORM S ECURITY a.zdyb@samsung.com https://github.com/azdyb Briefly about security requirements About Tizen operating system

920 views • 46 slides
Cyber Security A Modern Tale of a Dissonant Relationship BTB Security and me BTB Security

Cyber Security A Modern Tale of a Dissonant Relationship BTB Security and me BTB Security

Cyber Security A Modern Tale of a Dissonant Relationship BTB Security and me BTB Security Founded in 2006 Technical security services, MDR Me Ron Schlecht German word for BAD Ron.Schlecht@btbsecurity.com

432 views • 8 slides
Language Systems Chapter Four Modern Programming Languages, 2nd ed. 1 Outline The classical

Language Systems Chapter Four Modern Programming Languages, 2nd ed. 1 Outline The classical

Language Systems Chapter Four Modern Programming Languages, 2nd ed. 1 Outline The classical sequence Variations on the classical sequence Binding times Debuggers Runtime support Chapter Four Modern Programming Languages,

702 views • 51 slides
Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security policies Computer Security Basic concepts Peter Reiher Security policies for real systems January 13, 2005 Lecture 2 Lecture 2 Page 1

347 views • 9 slides
Relay Attacks on Passive Keyless Entry and Start Systems in Modern Cars Aurlien Francillon,

Relay Attacks on Passive Keyless Entry and Start Systems in Modern Cars Aurlien Francillon,

Relay Attacks on Passive Keyless Entry and Start Systems in Modern Cars Aurlien Francillon, Boris Danev, Srdjan apkun Monday February 7, 2011 System Security Group 1 Modern Cars Evolution Increasing amount of electronics in cars

552 views • 24 slides
iLab Modern cryptography for communications security Benjamin Hof hof@in.tum.de Lehrstuhl fr

iLab Modern cryptography for communications security Benjamin Hof hof@in.tum.de Lehrstuhl fr

iLab Modern cryptography for communications security Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Cryptography 15ws 1 / 72 Outline Cryptography

903 views • 88 slides
iLab Modern cryptography for communications security Benjamin Hof hof@in.tum.de Lehrstuhl fr

iLab Modern cryptography for communications security Benjamin Hof hof@in.tum.de Lehrstuhl fr

iLab Modern cryptography for communications security Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Cryptography 14ss 1 Outline Cryptography

780 views • 54 slides
MODERN SYSTEMS: SECURITY Hakim Weatherspoon CS6410 Slides borrowed liberally from past

MODERN SYSTEMS: SECURITY Hakim Weatherspoon CS6410 Slides borrowed liberally from past

1 MODERN SYSTEMS: SECURITY Hakim Weatherspoon CS6410 Slides borrowed liberally from past presentations from Sai Krishna Deepak Maram Move to a Cloud-based model User apps User apps PaaS Software Software Cloud Provider manages the

474 views • 31 slides
MODERN 1 MODERN 2 MODERN 3 MODERN 4 MODERN A peep at some distant orb has power to raise

MODERN 1 MODERN 2 MODERN 3 MODERN 4 MODERN A peep at some distant orb has power to raise

MODERN 1 MODERN 2 MODERN 3 MODERN 4 MODERN A peep at some distant orb has power to raise and purify our thoughts like a strain picture, or a passage from the grander poets. It always does one good. 5 MODERN 6 MODERN 7 MODERN 8

524 views • 24 slides
iLab Modern cryptography for communications security a fast rush Benjamin Hof hof@in.tum.de

iLab Modern cryptography for communications security a fast rush Benjamin Hof hof@in.tum.de

iLab Modern cryptography for communications security a fast rush Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Cryptography 16ss 1 / 38 Outline

504 views • 46 slides
Namespaces Systems and Internet Infrastructure Security (SIIS) Laboratory Page 1 Outline Sects

Namespaces Systems and Internet Infrastructure Security (SIIS) Laboratory Page 1 Outline Sects

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Namespaces Systems and Internet Infrastructure Security (SIIS)

1.13k views • 49 slides
Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1 Spring 2015 Outline Basic concepts in computer security Design principles for security Important security tools for operating systems

844 views • 56 slides
Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1 Fall 2015 Outline Basic concepts in computer security Design principles for security Important security tools for operating systems

1.15k views • 64 slides
Security in modern CPU Guillaume Bouffard ( guillaume.bouffard@ssi.gouv.fr ) Hardware Security

Security in modern CPU Guillaume Bouffard ( guillaume.bouffard@ssi.gouv.fr ) Hardware Security

Security in modern CPU Guillaume Bouffard ( guillaume.bouffard@ssi.gouv.fr ) Hardware Security Labs National Cybersecurity Agency of France (ANSSI) DIENS, ENS, CNRS, PSL University Workshop SILM 21 November 2019 Who am I? Me Expert in

1.18k views • 80 slides
Constraint Solving Systems and Internet Infrastructure Security (SIIS) Laboratory Page 1 Outline

Constraint Solving Systems and Internet Infrastructure Security (SIIS) Laboratory Page 1 Outline

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Constraint Solving Systems and Internet Infrastructure Security (SIIS)

455 views • 18 slides
The Nexus of Identity IBM's submission for the W3C Identity in the Browser Workshop by

The Nexus of Identity IBM's submission for the W3C Identity in the Browser Workshop by

The Nexus of Identity IBM's submission for the W3C Identity in the Browser Workshop by Maryann Hondo, Mary Ellen Zurko, Matthew Flaherty, Paula K. Austel, Sridhar Muppidi Net - net of the paper Our customers expect us to give them the

558 views • 9 slides
How can practice theory inform interventions into the domestic nexus? Dr. Daniel Welch

How can practice theory inform interventions into the domestic nexus? Dr. Daniel Welch

How can practice theory inform interventions into the domestic nexus? Dr. Daniel Welch Sustainable Consumption Institute, University of Manchester Three contributions of contemporary practice theory A way of understanding the organisation

451 views • 15 slides
Sales Taxes in an e-Commerce Generation David R. Agrawal (University of Kentucky) and William F.

Sales Taxes in an e-Commerce Generation David R. Agrawal (University of Kentucky) and William F.

Sales Taxes in an e-Commerce Generation David R. Agrawal (University of Kentucky) and William F. Fox (University of Tennessee) Introduction Issues of cross-border shopping and mail order catalogs have long challenged the administration of

308 views • 20 slides
Pwning the Nexus of Every Pixel Qidan He Gengming Liu CanSecWest 2017 Vancouver

Pwning the Nexus of Every Pixel Qidan He Gengming Liu CanSecWest 2017 Vancouver

Pwning the Nexus of Every Pixel Qidan He Gengming Liu CanSecWest 2017 Vancouver #whoami Qidan He Apple/Android/Chrome CVE hunter (dozens of credits got) Speaker at BlackHat USA/ASIA, DEFCON, RECON, CanSecWest, HITCON

1.22k views • 72 slides
GOOGLE NEXUS 5X & 6P MAINLINING EFFORT JEREMY MCNICOLL JEREMYMC@REDHAT.COM $> WHOAMI 2

GOOGLE NEXUS 5X & 6P MAINLINING EFFORT JEREMY MCNICOLL JEREMYMC@REDHAT.COM $> WHOAMI 2

GOOGLE NEXUS 5X & 6P MAINLINING EFFORT JEREMY MCNICOLL JEREMYMC@REDHAT.COM $> WHOAMI 2 Jeremy McNicoll Nexus Mainline Effort 3 Jeremy McNicoll Nexus Mainline Effort WHY? 4 Jeremy McNicoll Nexus Mainline Effort NEXUS 5X

706 views • 28 slides
Light Leakage Reduction in the SuperCDMS & NEXUS Detector Systems Jillian Gomez SIST Final

Light Leakage Reduction in the SuperCDMS & NEXUS Detector Systems Jillian Gomez SIST Final

Light Leakage Reduction in the SuperCDMS & NEXUS Detector Systems Jillian Gomez SIST Final Presentation August 7, 2019 Dark Matter: We know what its not. According to the latest astronomical observations, DM makes up 85% of all

406 views • 23 slides
The Growth-Employment-Poverty Nexus in Latin America in the 2000s Guillermo Cruces Gary S.

The Growth-Employment-Poverty Nexus in Latin America in the 2000s Guillermo Cruces Gary S.

The Growth-Employment-Poverty Nexus in Latin America in the 2000s Guillermo Cruces Gary S. Fields CEDLAS-FCE-UNLP, CONICET and IZA Cornell University, IZA and WIDER David Jaume Mariana Viollaz Cornell University and CEDLAS-FCE-

934 views • 58 slides
Ubiquitous and Mobile Computing CS 528:EnergyEfficiency Comparison of Mobile Platforms and

Ubiquitous and Mobile Computing CS 528:EnergyEfficiency Comparison of Mobile Platforms and

Ubiquitous and Mobile Computing CS 528:EnergyEfficiency Comparison of Mobile Platforms and Applications: A Quantitative Approach Norberto Luna Cano Computer Science Dept. Worcester Polytechnic Institute (WPI) Introduction A comparison of

251 views • 24 slides

More recommend