Retrofitting Security, Module by Module

Friday, May 31, 2019, 1:00 pm - 2:00 pm PDTiCal
ISI Marina del Rey: Conference Room 1135
This event is open to the public.
ISI Seminar Series Talk
Nikos Vasilakis
Video Recording:

Developers of large-scale software systems use third-party modules to reduce costs and accelerate release cycles, at a risk to safety and security. I will introduce a series of techniques that exploit module boundaries to automate software compartmentalization and enforce security policies, enhancing safety and security. BreakApp transparently spawns modules in compartments while preserving their original behavior. Iris leverages language-based protection to offer finer-grained control and lower performance overheads. Finally, Mir uses a constrained read-write-execute protection model to fully automate compartmentalization.

Nikos Vasilakis is a Ph.D. candidate in Computer and Information Science at the University of Pennsylvania. His research interests are in the broad areas of distributed systems, programming languages, and security. Recent work includes general-purpose distributed environments, automated distribution, application compartmentalization, sandboxing of third-party libraries, and distributed storage systems.

ISI Host:  Dr. Jelena Mirkovic

« Return to Upcoming Events