Object Capabilities for Security

Back


Google Tech Talks November, 30 2007 ABSTRACT Existing systems often do a poor job of meeting the principle of least privilege. I will discuss how object capability systems and language-based methods can help address this shortcoming. In language-based object capability systems, an object reference is treated as a capability; unforgeability of references ensures unforgeability of capabilities; and all privileges are expressed as capabilities in this way. This makes it possible to decompose the system into distrusting "privilege-separated" components, providing each component with the least privilege it needs to do its job; to reason about the privileges and powers available to various program elements, often in a local (modular) way; and to avoid common pitfalls, such as confused deputy and TOCTTOU vulnerabilities. I will attempt to introduce the audience to some work in this area that is perhaps not so widely known, and I will describe some work in progress to construct a subset of Java, called Joe-E, that is intended to enable capability-style programming using a programming syntax that is familiar to Java programmers. Speaker: David Wagner David Wagner is an Associate Professor in the Computer Science Division at the University of California at Berkeley with extensive experience in computer security and cryptography. He and his Berkeley colleagues are known for discovering a wide variety of security vulnerabilities in various cellphone standards, 802.11 wireless networks, and other widely deployed systems, and he has published two books and over 90 peer-reviewed scientific papers. David is a founding member of the ACCURATE center on electronic voting. He is active in the areas of systems security, cryptography, and electronic voting.

Category: People
Uploaded: December 4th, 2007 @ 2:13 am
Author: googletechtalks

Length: 59:49
Rating:
Views: 4,797

Tags: education engedu google googletechtalks talk talks techtalk techtalks

Related Video Links:

» View Video Comments For Object Capabilities for Security
» View googletechtalks's Other Uploaded Videos

Video Thumbnails:

	Video Thumbnail #1:
	Video Thumbnail #2:
	Video Thumbnail #3:

Video Embedding Code:

Video Url:


Embed Code:

* Embed this video on your website, social bookmark, myspace, or blog.

• Pages:

  Home
  YouTube's Blog

• Tags:

  in home computer service computer network virus protection computer background computer wallpaper buy computer free computer game anti virus program programs compaq computer how to build a computer free anti virus download computer telephony computer networking computer program computer repair computer consulting computer spyware wholesale computer sony computer computer hardware computer show computer mouse cheap computer computer rental corner computer desk free virus protection dell laptop computer free anti virus software red hat computer accessory virus scan free computer wallpaper computer check wireless setup pc computer repair computers networking cheap notebook computer computer education os x computer chair shop for computer trojan virus computer programming services computer animation computer networking computer news gaming computer computer game windows computer support html computer game design personal computer dell computer computer monitor computer part slax linux mac computer refurbished computer computer help computer book software norton anti virus windows xp computer equipment computer graphic debian computer directory yahoo computer consulting training used computer computer virus computer services ubuntu computer armoire computer virus computer training computer sale computer communication anti virus protection wireless network free virus protection download anti virus computer keyboard computer store computer graphic design computer software computer component spyware anti virus panda anti virus laptops notebook desktop computer computer computer associate free virus scan linux avg anti virus free computer science hp computer vista gateway computer computer forensics computer technology computer furniture computer internet computer cable mcafee anti virus discount computer computer hardware equipment computer networking solution business computer solution computer programmer macintosh computer computer memory free anti virus acer computer computer electronics anti virus software apple computer computer jobs computer sales marketing computer programming avg anti virus microsoft anti virus notebook computer computer recycling computer speaker online virus scan java computer security computer system computer processing data preparation processing services history of computer computer desk computer cases