Building Trustworthy Operating Systems 4/10, 10:30-12:00, Ε901

Εδώ μπορείτε να ενημερώνετε ή να ενημερώνεστε για τη διοργάνωση διαφόρων συνεδρίων και σεμιναρίων.
Post Reply
User avatar
Alive
Venus Former Team Member
Posts: 457
Joined: Fri May 31, 2013 1:24 pm
Academic status: N>4
Gender:

Building Trustworthy Operating Systems 4/10, 10:30-12:00, Ε901

Post by Alive » Mon Oct 03, 2016 5:00 pm

Title: Building Trustworthy Operating Systems

Abstract: Today's operating systems are large, complex, and plagued with
vulnerabilities that allow perpetrators to exploit them for profit. The
constant rise in the number of software weaknesses, coupled with the
sophistication of modern adversaries, make the need for effective and
agile defenses more critical than ever. In this talk, I will present my
work on developing novel protection mechanisms and exploit prevention
techniques that improve the security posture of commodity operating
systems. In particular, I will discuss kGuard, XPFO, and kR^X, three
projects whose goal is to harden contemporary OSes against attacks that
exploit vulnerabilities in kernel code, without entailing
super-privileged software (e.g., a hypervisor or VMM). In addition, I
will talk about ret2dir, a new kernel exploitation technique that I
developed, which uncovered how fundamental OS design practices and
implementation decisions can significantly weaken the effectiveness of
state of-the-art kernel protection mechanisms.

Bio: Vasileios (Vasilis) Kemerlis is an Assistant Professor of Computer
Science at Brown University. His research interests are in the areas of
systems and software security, with a focus on OS kernel protection,
automated software hardening, and information-flow tracking. His work on
kernel exploitation has been profiled by press and social media outlets,
including Dark Reading, Hacker News, and Reddit, won the first prize in
the Applied Security Research Paper competition, at the Cyber Security
Awareness Week (CSAW) 2014, and led to the adoption of kernel hardening
techniques from OpenBSD and Qualcomm's MSM Android. In addition, Vasilis
has contributed to the design and implementation of Microsoft's primary
solution for automatically triaging crash dumps, which is now part of
the Windows Error Reporting Platform. In the past, he was a member of
the Solaris Core Kernel team at Oracle, where he worked on adding
support for full Address Space Layout Randomization (ASLR) in the
Solaris OS. Lastly, Vasilis has co-invented the first cache-based side
channel attack that can be entirely executed from JavaScript context,
which resulted in Apple and Mozilla limiting the time resolution of
JavaScript's performance API (as a mitigation to the proposed attack),
and the Tor Project decreasing the time precision of JavaScript
entirely. Vasilis holds a PhD (2015), MPhil (2013), and MS (2010) in
Computer Science from Columbia University, and a BS (2006) in Computer
Science from Athens University of Economics and Business.
User avatar
HdkiLLeR
Venus Project Founder
Venus Project Founder
Posts: 4356
Joined: Tue Jan 27, 2004 4:41 pm
Academic status: Alumnus/a
Gender:
Location: New York, NY
Contact:

Re: Building Trustworthy Operating Systems 4/10, 10:30-12:00, Ε901

Post by HdkiLLeR » Mon Oct 03, 2016 10:22 pm

Η ομιλία θα γίνει στο πλαίσιο του MMlab meeting (αλλά ανοικτή σε όλους), στο κτήριο των μεταπτυχιακών (Ευελπίδων 47Α), 9ος όροφος, αίθουσα #901. Μετά το τέλος της ομιλίας θα είμαι διαθέσιμος για να συναντήσω φοιτητές -- ειδικά εάν κάποιος ενδιαφέρεται για διδακτορικές/μεταπτυχιακές σπουδές στο Brown ή τις ΗΠΑ.

Περισσότερες πληροφορίες για το πως μπορεί κάποιος να έρθει, εδώ: http://www.cs.aueb.gr/el/content/xrisima-prosbasi
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GCS d-->--- s+:+ a- C++(+++) BILS++++$ P--- L++++>+++++ E--- W+++ N+ o+ K w--
O M+ V-- PS++>+++ PE- Y++ PGP++ t+ 5+ X+ R* tv b++ DI- D+ G+++ e+++>++++ h r++ y++
------END GEEK CODE BLOCK------

"UNIX is basically a simple operating system, but you have to be a genius to understand the simplicity." -- Dennis Ritchie
Post Reply

Return to “Συνέδρια - Σεμινάρια”