Presentation is loading. Please wait.

Presentation is loading. Please wait.

Integrity Through Mediated Interfaces PI Meeting August 19, 2002 Bob Balzer, Marcelo Tallis Legend: Turquoise Changes from.

Published byMavis Turner Modified over 8 years ago

Similar presentations

Presentation on theme: "Integrity Through Mediated Interfaces PI Meeting August 19, 2002 Bob Balzer, Marcelo Tallis Legend: Turquoise Changes from."— Presentation transcript:

1 Integrity Through Mediated Interfaces PI Meeting August 19, 2002 Bob Balzer, Marcelo Tallis Teknowledge @teknowledge.com Legend: Turquoise Changes from Feb. 02 PI meeting

2 Technical Objectives Wrap Data with Integrity Marks –Insure its Integrity –Record its processing history –Reconstruct it from this history if it is corrupted by program bugs by malicious attacks Demo these capabilities on major COTS product –Microsoft Office Suite (PowerPoint & Word only) –Also demo on a mission critical military system PowerPoint and Word

3 Wrap Program –Detect access of integrity marked data & decode it M M M M MediationCocoon Environment = Operating System External Programs Program Change Monitor –Monitor User Interface to detect change actions Translate GUI actions into application specific modifications Technical Approach –Detect update of integrity marked data Re-encode & re-integrity mark the updated data Repair any subsequent Corruption from History Build on existing research infrastructure

4 MS Word Data Integrity Technical Approach To Attribution Time Lever shows document development –User selects range of interest –Move Forwards through Operations Log –Move Backwards through Undo Stack Operations Log

5 Completed (except for integration of generic mechanisms from PowerPoint Data Integrity) GUI Monitor tied to change history Data Integrity Current Status MS Word Data Integrity –Completed MS PowerPoint Data Integrity –Generic Data Integrity Architecture Shape creation/deletion Shape move/resize/recolor/rotate Connector attachment/detachment Group/ungroup Problems (requiring unique development) –Single Process Debug/Demo Architecture –Typed Text (different low-level implementation) –Dangling Connectors (incomplete COM model) DemoDemo

6 Data Integrity Future Plans Complete Coverage of PowerPoint Operations Integrate generic mechanisms from PowerPoint Integrity Manager back into Word Deploy Word and PowerPoint Integrity Managers

7 SafeEmailAttachments M M M M Wrapper Safety Rules k Attachment Handler Spawn Wrapper encapsulates each spawned process SafeEmailAttachments M M M M Wrapper Safety Rules j Attachment Handler Each opened attachment spawns new process Spawn SafeEmailAttachments M M M M Wrapper Safety Rules i Attachment Email Client Safe Email Attachments Deployment Bundled with ADF as OPX Hardened Client MARFORPAC Usability Test 2/02 FBE-Juliet Red Team Experiment 8/02

8 Deployment/Red-Team Results MARFORPAC Usability Test (2/02) –No field usage problems (no attacks) –Assessed as unmaintainable Not configurable by Marine Sysadmins Alerts not understandable by Marine personnel Hardened Client II Red-Team Experiment (5/02) –Test new ByPass Protection mechanism All attacks on or to disable ByPass Protector failed Attack on unprotected wrapper data succeeded –This vulnerability disclosed to Red-Team prior to experiment FBE-Juliet Red-Team Experiment (8/02) –Test SafeEmail against malicious attachments All attacks on SafeEmail failed –SafeEmail field portable to OfficeXP  New rule system & GUI  Autonomic responses Response Demo

9 SafeEmail Plans Integration with Enterprise Wrappers –Offboard Policy Manager –Offboard Alert Dissemination –Dynamic Policies Pilot Deployments –Within Military and Federal Government Development of Contained Execution Compartments –No persistent effects from opening email attachments –Only new document versions from editors Integration with autonomic attack detector (SBIR) Hardening & Independent Assessment (OPX) Broader Coverage (all user processes) (OPX)

Download ppt "Integrity Through Mediated Interfaces PI Meeting August 19, 2002 Bob Balzer, Marcelo Tallis Legend: Turquoise Changes from."

Similar presentations

Our Corporate Mission Quality Systems Management, Inc. (QSMI)

Our Corporate Mission Quality Systems Management, Inc. (QSMI)
Semantically Grounded Briefings Bob Balzer, Neil Goldman, Marcelo Tallis Teknowledge

Semantically Grounded Briefings Bob Balzer, Neil Goldman, Marcelo Tallis Teknowledge
Supplied on \web site. on January 10 th, 2008 Customer Security Management Reducing Internet fraud June 1 st, 2008 eSAC Walk Thru © Copyright Prevx Limited.

Supplied on \web site. on January 10 th, 2008 Customer Security Management Reducing Internet fraud June 1 st, 2008 eSAC Walk Thru © Copyright Prevx Limited.
Agenda COBIT 5 Product Family Information Security COBIT 5 content

Agenda COBIT 5 Product Family Information Security COBIT 5 content
Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.

Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 30 Slide 1 Security Engineering.

©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 30 Slide 1 Security Engineering.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Computer Security: Principles and Practice

Computer Security: Principles and Practice
Stephen S. Yau CSE 465-591, Fall 2006 1 Security Strategies.

Stephen S. Yau CSE , Fall Security Strategies.
©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 30 Slide 1 Security Engineering.

©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 30 Slide 1 Security Engineering.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
Securing Legacy Software SoBeNet User group meeting 25/06/2004.

Securing Legacy Software SoBeNet User group meeting 25/06/2004.
Success status, page 1 Collaborative learning for security and repair in application communities MIT & Determina AC PI meeting July 10, 2007 Milestones.

Success status, page 1 Collaborative learning for security and repair in application communities MIT & Determina AC PI meeting July 10, 2007 Milestones.
S E C U R E C O M P U T I N G Intrusion Tolerant Server Infrastructure Dick O’Brien, Tammy Kappel, Clint Bitzer OASIS PI Meeting March 14, 2002.

S E C U R E C O M P U T I N G Intrusion Tolerant Server Infrastructure Dick O’Brien, Tammy Kappel, Clint Bitzer OASIS PI Meeting March 14, 2002.
Test Organization and Management

Test Organization and Management
1 Engineering a Distributed Intrusion Tolerant Database System Using COTS Components Peng Liu University of Maryland Baltimore County Feb 2001.

1 Engineering a Distributed Intrusion Tolerant Database System Using COTS Components Peng Liu University of Maryland Baltimore County Feb 2001.
Integrity Through Mediated Interfaces PI Meeting: Feb 22-23, 2000 Bob Balzer Information Sciences Institute Legend: Changes from previous.

Integrity Through Mediated Interfaces PI Meeting: Feb 22-23, 2000 Bob Balzer Information Sciences Institute Legend: Changes from previous.
Security Overview for Microsoft Infrastructures Fred Baumhardt and James Noyce Infrastructure Solutions and Security Solutions Teams Microsoft Security.

Security Overview for Microsoft Infrastructures Fred Baumhardt and James Noyce Infrastructure Solutions and Security Solutions Teams Microsoft Security.
Michael Ernst, page 1 Collaborative Learning for Security and Repair in Application Communities Performers: MIT and Determina Michael Ernst MIT Computer.

Michael Ernst, page 1 Collaborative Learning for Security and Repair in Application Communities Performers: MIT and Determina Michael Ernst MIT Computer.

Similar presentations

Ads by Google