verifying security invariants in expressos
play

Verifying security invariants in ExpressOS Haohui Mai, Edgar Pek, - PowerPoint PPT Presentation

Dec 19, 2022 •22 likes •912 views

Verifying security invariants in ExpressOS Haohui Mai, Edgar Pek, Hui Xue, Samuel T. King, P . Madhusudan University of Illinois at Urbana-Champaign Mobiles devices are powerful Security of mobile devices is important High value

  1. Verifying security invariants in ExpressOS Haohui Mai, Edgar Pek, Hui Xue, Samuel T. King, P . Madhusudan University of Illinois at Urbana-Champaign

  2. Mobiles devices are powerful 

  3. Security of mobile devices is important • High value targets on mobile devices

  4. Security of mobile devices is important • High value targets on mobile devices                                              

  5. Security of mobile devices is important • High value targets on mobile devices                                              

  6. Security of mobile devices is important • High value targets on mobile devices                                              

  7. Security of mobile devices is important • High value targets on mobile devices                                               ?

  8. Motivating example                        

  9. Motivating example                        

  10. Motivating example • Isolate the application’s                         persistent storage from • other applications • components of the File system system Device driver Kernel

  11. Motivating example • Isolate the application’s                         persistent storage from • other applications • components of the File system system Device driver • Immediately meaningful Kernel

  12. ROOTED

  13. Wide attack surfaces                                                     File system         Device driver            Kernel                 

  14. Wide attack surfaces                                                     File system         Device driver            Kernel                 

  15. Wide attack surfaces                                                     File system         Device driver            Kernel                 

  16. Wide attack surfaces                                                     File system         Device driver            Kernel                 

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A Temporal Dynamic Logic for Verifying Hybrid System Invariants e Platzer 1 , 2 Andr 1

A Temporal Dynamic Logic for Verifying Hybrid System Invariants e Platzer 1 , 2 Andr 1

A Temporal Dynamic Logic for Verifying Hybrid System Invariants e Platzer 1 , 2 Andr 1 University of Oldenburg, Department of Computing Science, Germany 2 Carnegie Mellon University, Computer Science Department, Pittsburgh, PA, USA LFCS07

917 views • 57 slides
Verifying Security Protocols and their Implementations Information Security and Cryptography

Verifying Security Protocols and their Implementations Information Security and Cryptography

Verifying Security Protocols and their Implementations Information Security and Cryptography Reading Group Presenter: C t lin Hri cu References Verified Interoperable Implementations of Security Protocols. Karthikeyan Bhargavan,

922 views • 70 slides
Verifying Authentication Properties of C Protocol Code Using VCC Franois Dupressoir (Open

Verifying Authentication Properties of C Protocol Code Using VCC Franois Dupressoir (Open

Verifying Authentication Properties of C Protocol Code Using VCC Franois Dupressoir (Open University) Andrew D. Gordon (MSR Cambridge) Jan Jrjens (TU Dortmund) Verifying Security Code Assume a security API specification.

397 views • 24 slides
Verifying email security techniques for Dutch organizations Student: Vincent van Dongen

Verifying email security techniques for Dutch organizations Student: Vincent van Dongen

Verifying email security techniques for Dutch organizations Student: Vincent van Dongen Supervised by: Ralph Dolmans, George Thessalonikefs (NLnet Labs) Security and Network Engineering (UvA) Master Thesis, 3 July 2018 Vincent van Dongen (UvA)

187 views • 17 slides
CS 220: Discrete Structures and their Applications Loop Invariants Chapter 3 in zybooks Program

CS 220: Discrete Structures and their Applications Loop Invariants Chapter 3 in zybooks Program

CS 220: Discrete Structures and their Applications Loop Invariants Chapter 3 in zybooks Program verification How do we know our program works correctly? In this lecture we will focus on a tool for verifying the correctness of programs that

605 views • 25 slides
Enforcing Kernel Security Invariants with Data Flow Integrity Chengyu Song , ByoungyoungLee,

Enforcing Kernel Security Invariants with Data Flow Integrity Chengyu Song , ByoungyoungLee,

Enforcing Kernel Security Invariants with Data Flow Integrity Chengyu Song , ByoungyoungLee, Kangjie Lu, William Harris, Taesoo Kim, Wenke Lee Institute for Information Security & Privacy Georgia Tech Kernel Memory Corruption Vulnerability

493 views • 24 slides
Verifying that a compiler preserves concurrent value-dependent information-flow security Robert

Verifying that a compiler preserves concurrent value-dependent information-flow security Robert

Verifying that a compiler preserves concurrent value-dependent information-flow security Robert Sison (UNSW Sydney, Data61) and Toby Murray (University of Melbourne) September 2019 THE UNIVERSITY OF NEW SOUTH WALES www.data61.csiro.au So

1.94k views • 156 slides
Verifying Web Services Security Protocols, Standards, and Implementations Karthik Bhargavan

Verifying Web Services Security Protocols, Standards, and Implementations Karthik Bhargavan

Verifying Web Services Security Protocols, Standards, and Implementations Karthik Bhargavan Microsoft Research, Cambridge Microsoft Research INRIA Joint Centre, Paris Joint work with C. Fournet and A.D. Gordon + R. Puccella, S. Tse, N.

1.4k views • 122 slides
Verifying Persistent Security Properties Annalisa Bossi, Damiano Macedonio, Riccardo Focardi,

Verifying Persistent Security Properties Annalisa Bossi, Damiano Macedonio, Riccardo Focardi,

Verifying Persistent Security Properties Annalisa Bossi, Damiano Macedonio, Riccardo Focardi, Carla Piazza, and Sabina Rossi Dipartimento di Informatica Universit` a Ca Foscari di Venezia { bossi,mace,focardi,piazza,srossi } @dsi.unive.it

545 views • 28 slides
Searching for Program Invariants using Genetic Programming and Mutation Testing Sam Ratcliff,

Searching for Program Invariants using Genetic Programming and Mutation Testing Sam Ratcliff,

Searching for Program Invariants using Genetic Programming and Mutation Testing Sam Ratcliff, David R. White and John A. Clark. The 13th CREST Open Workshop Thursday 12 May 2011 Outline Invariants Using GP to find Invariants Identifying

417 views • 38 slides
GENERATING INVARIANTS IN POSITIVE CHARACTERISTIC VISU MAKAM Abstract. The ring of invariants for a

GENERATING INVARIANTS IN POSITIVE CHARACTERISTIC VISU MAKAM Abstract. The ring of invariants for a

GENERATING INVARIANTS IN POSITIVE CHARACTERISTIC VISU MAKAM Abstract. The ring of invariants for a rational representation of a reductive group is finitely generated by the results of Hilbert, Nagata and Haboush. However, the proof is not

482 views • 3 slides
The Computational SLR: A Calculus for Verifying Cryptographic Proofs Yu Zhang Institute of

The Computational SLR: A Calculus for Verifying Cryptographic Proofs Yu Zhang Institute of

The Computational SLR: A Calculus for Verifying Cryptographic Proofs Yu Zhang Institute of Software Chinese Academy of Sciences BASICS09, Shanghai, China October 13, 2009 Background Formal verification of security protocols from

312 views • 28 slides
Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of Computer Science University of Texas at Austin mihir@cs.utexas.edu 10 November, 2017 1/34 Outline Motivation and related work Our approach

681 views • 34 slides
Local invariants of maps between 3-manifolds Victor Goryunov University of Liverpool Conference

Local invariants of maps between 3-manifolds Victor Goryunov University of Liverpool Conference

Introduction Generic critical value sets Integer invariants mod2 invariants Local invariants of maps between 3-manifolds Victor Goryunov University of Liverpool Conference Legacy of Vladimir Arnold Fields Institute, Toronto 25 November

1.37k views • 84 slides
Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of Computer Science University of Texas at Austin mihir@cs.utexas.edu 09 March, 2017 Overview 1. Why we need a verified filesystem 2. Our approach

514 views • 29 slides
Loop invariants <precondition: n>0> int i = 0; while (i < n){ i = i+1; We want to

Loop invariants <precondition: n>0> int i = 0; while (i < n){ i = i+1; We want to

4/23/16 Loop invariants as a way of reasoning about the state of your program Loop invariants <precondition: n>0> int i = 0; while (i < n){ i = i+1; We want to prove: } i==n right after the loop <post condition: i==n>

80 views • 7 slides
Improving the bootup speed of AOSP Bernhard Bero Rosenkrnzer <bero@linaro.org> ELC

Improving the bootup speed of AOSP Bernhard Bero Rosenkrnzer <bero@linaro.org> ELC

Improving the bootup speed of AOSP Bernhard Bero Rosenkrnzer <bero@linaro.org> ELC 2017-02-23 CC-BY-SA 3.0 Quick overview 2 different possible approaches: Reduce regular bootup time Problem: Lots of initialization

538 views • 15 slides
Fixing The Internet Of Sh*t a.k.a. How to design secure web apps A presentation by Greg

Fixing The Internet Of Sh*t a.k.a. How to design secure web apps A presentation by Greg

Fixing The Internet Of Sh*t a.k.a. How to design secure web apps A presentation by Greg Slepak at Greg Slepak @taoeffect okTurtles GroupIncome Espionage What Is The Internet of ? The Internet of ? Source:

814 views • 69 slides
Mobility Enhancement of 2DHG in an In 0 2 Ga 0 in an In 0.24 Ga 0.76 As Quantum 6 As Quantum Well

Mobility Enhancement of 2DHG in an In 0 2 Ga 0 in an In 0.24 Ga 0.76 As Quantum 6 As Quantum Well

Mobility Enhancement of 2DHG in an In 0 2 Ga 0 in an In 0.24 Ga 0.76 As Quantum 6 As Quantum Well by <110> Uniaxial Strain Ling Xia 1 , Vadim Tokranov 2 , Serge Oktyabrsky 2 and Jess del Alamo 1 1 MIT 2 SUNY Alb 1 MIT , 2 SUNY Albany

320 views • 11 slides
CA system and CyberScience Infrastructure Shinji Shimojo Cybermedia Center Osaka University

CA system and CyberScience Infrastructure Shinji Shimojo Cybermedia Center Osaka University

CA system and CyberScience Infrastructure Shinji Shimojo Cybermedia Center Osaka University Multimedia-based Science Education Multimedia-based Science Education from computer literacy to advanced computer from computer literacy to advanced

420 views • 15 slides
How to optimize drilling strategies and reservoir management: lessons learned from the Soultz EGS

How to optimize drilling strategies and reservoir management: lessons learned from the Soultz EGS

How to optimize drilling strategies and reservoir management: lessons learned from the Soultz EGS project? Leiden, The Netherlands 7-9 November 2007 Risk Analysis for Development of Geothermal Energy Cuenot N., Genter A., Naville Ch. ENGINE

478 views • 21 slides
CS 488 Computer Graphics 1 Introduction to Real-Time Rendering Dr. Angus Forbes, Instructor Kyle

CS 488 Computer Graphics 1 Introduction to Real-Time Rendering Dr. Angus Forbes, Instructor Kyle

CS 488 Computer Graphics 1 Introduction to Real-Time Rendering Dr. Angus Forbes, Instructor Kyle Almryde, TA Creative Coding Research Group at EVL Department of Computer Science University of Illinois at Chicago

515 views • 14 slides
I. Introduction Highly parallel Graphics computing GPU (Parallel computing) 4 cores 512

I. Introduction Highly parallel Graphics computing GPU (Parallel computing) 4 cores 512

Talk outline [25 slides ] Medical Image Analysis on GPUs: 1. Introduction [2 slides] Challenges and Future Trends 2. Programming GPUs: OpenACC/CUDA [8 slides] 3. Hardware designs: Kepler/Echelon [14 slides] 4. Conclusions [1 slide] Manuel

241 views • 8 slides
Introduction to Particle Physics Masterclasses Konrad Jende, High School Teacher Programme 2014 1

Introduction to Particle Physics Masterclasses Konrad Jende, High School Teacher Programme 2014 1

Bringing the world s largest science experiment into the classroom Introduction to Particle Physics Masterclasses Konrad Jende, High School Teacher Programme 2014 1 Outline Introduction

542 views • 26 slides

More recommend