Presentation is loading. Please wait.

Presentation is loading. Please wait.

More Enforceable Security Policies Lujo Bauer, Jay Ligatti and David Walker Princeton University (graciously presented by Iliano Cervesato)

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "More Enforceable Security Policies Lujo Bauer, Jay Ligatti and David Walker Princeton University (graciously presented by Iliano Cervesato)"— Presentation transcript:

1 More Enforceable Security Policies Lujo Bauer, Jay Ligatti and David Walker Princeton University (graciously presented by Iliano Cervesato)

2 FCS 02Bauer, Ligatti, Walker Language-Based Security language-based security mechanisms operate by analyzing and modifying program behavior –static mechanisms (analysis at link time) type checking, proof checking, abstract interpretation –dynamic mechanisms (analysis at run time) access control lists, stack inspection, capabilities

3 FCS 02Bauer, Ligatti, Walker Program Monitors A program monitor is a computation that runs in parallel with an untrusted application –monitors detect, prevent, and recover from application errors at run time –monitor decisions may be based on the history of all actions an application has executed –we assume monitors have no knowledge of future application actions

4 FCS 02Bauer, Ligatti, Walker Program Monitors: Good operations Application Monitor foo

5 FCS 02Bauer, Ligatti, Walker Program Monitors: Bad operations Application Monitor foo halt!

6 FCS 02Bauer, Ligatti, Walker Program Monitors: Options A program monitor may do any of the following when it recognizes a dangerous operation: –abort the application –suppress (skip) the operation but allow the application to continue –perform some computation on behalf of (against the wishes of) the application

7 FCS 02Bauer, Ligatti, Walker This paper Formalizes the notion of a program monitor by providing operational semantics for –security automata [Schneider 00] –insertion automata –suppression automata –edit automata

8 FCS 02Bauer, Ligatti, Walker This paper Begins to address the fundamental question of what run-time security policies can be enforced by program monitors –security automata are the least powerful –suppression and insertion automata are more powerful than security automata but incomparable –edit automata are the most powerful

9 FCS 02Bauer, Ligatti, Walker Current Work We are currently developing a programming language called Polymer –Poymer allows programmers to define higher-order, first-class and modular program monitors –Poymer has logical combinators ( ⊤ ⋀ ⊥ ⋁ ) that allow programmers to build complex policies from simple ones –Polymer provides security against untrusted Java applications

10 FCS 02Bauer, Ligatti, Walker Conclusions There are two equally important aspects of language-based security –static program analysis –dynamic program analysis Most of the research in the programming languages community has focused on the first at the expense of the second –we plan to fix this!

Download ppt "More Enforceable Security Policies Lujo Bauer, Jay Ligatti and David Walker Princeton University (graciously presented by Iliano Cervesato)"

Similar presentations

1 Composing Security Policies with Polymer Jay Ligatti (Princeton); joint work with: Lujo Bauer (CMU), David Walker (Princeton)

1 Composing Security Policies with Polymer Jay Ligatti (Princeton); joint work with: Lujo Bauer (CMU), David Walker (Princeton)
Mobile Code Security Yurii Kuzmin. What is Mobile Code? Term used to describe general-purpose executables that run in remote locations. Web browsers come.

Mobile Code Security Yurii Kuzmin. What is Mobile Code? Term used to describe general-purpose executables that run in remote locations. Web browsers come.
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 14: Protection.

Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 14: Protection.
Current Techniques in Language-based Security David Walker COS 597B With slides stolen from: Steve Zdancewic University of Pennsylvania.

Current Techniques in Language-based Security David Walker COS 597B With slides stolen from: Steve Zdancewic University of Pennsylvania.
08/03/071/41 Polymer: A Language and System for Specifying Complex, Modular Run-time Policies Jay Ligatti, University of South Florida Joint work with:

08/03/071/41 Polymer: A Language and System for Specifying Complex, Modular Run-time Policies Jay Ligatti, University of South Florida Joint work with:
Jay Ligatti and Srikar Reddy University of South Florida.

Jay Ligatti and Srikar Reddy University of South Florida.
Modular Program Monitors David Walker Princeton University (joint work with Lujo Bauer and Jay Ligatti)

Modular Program Monitors David Walker Princeton University (joint work with Lujo Bauer and Jay Ligatti)
An Introduction to Proof-Carrying Code David Walker Princeton University (slides kindly donated by George Necula; modified by David Walker)

An Introduction to Proof-Carrying Code David Walker Princeton University (slides kindly donated by George Necula; modified by David Walker)
CLF: A Concurrent Logical Framework David Walker Princeton (with I. Cervesato, F. Pfenning, K. Watkins)

CLF: A Concurrent Logical Framework David Walker Princeton (with I. Cervesato, F. Pfenning, K. Watkins)
Attacking Malicious Code: A Report to the Infosec Research Council Kim Sung-Moo.

Attacking Malicious Code: A Report to the Infosec Research Council Kim Sung-Moo.
Bilkent University Department of Computer Engineering

Bilkent University Department of Computer Engineering
Software Security Monitors: Theory & Practice David Walker Princeton University (joint work with Lujo Bauer and Jay Ligatti)

Software Security Monitors: Theory & Practice David Walker Princeton University (joint work with Lujo Bauer and Jay Ligatti)
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 14: Protection.

Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 14: Protection.
1 Enforcing Confidentiality in Low-level Programs Andrew Myers Cornell University.

1 Enforcing Confidentiality in Low-level Programs Andrew Myers Cornell University.
Programmability with Proof-Carrying Code George C. Necula University of California Berkeley Peter Lee Carnegie Mellon University.

Programmability with Proof-Carrying Code George C. Necula University of California Berkeley Peter Lee Carnegie Mellon University.
Policy-Carrying, Policy-Enforcing Digital Objects Sandra Payette and Carl Lagoze Cornell Digital Library Research Group ECDL2000 Lisbon, Portugal September.

Policy-Carrying, Policy-Enforcing Digital Objects Sandra Payette and Carl Lagoze Cornell Digital Library Research Group ECDL2000 Lisbon, Portugal September.
Software Reliability Methods Sorin Lerner. Software reliability methods: issues What are the issues?

Software Reliability Methods Sorin Lerner. Software reliability methods: issues What are the issues?
A Type System for Expressive Security Policies David Walker Cornell University.

A Type System for Expressive Security Policies David Walker Cornell University.
Harmless Advice Daniel S Dantas Princeton University with Prof. David Walker.

Harmless Advice Daniel S Dantas Princeton University with Prof. David Walker.
Chapter 14: Protection.

Chapter 14: Protection.

Similar presentations

Ads by Google