Internet Security Research Lab

Jason Holt presented a talk on LogCrypt yesterday at the Australasian Information Security Workshop in Hobart, Tasmania.

See talk slides

At this week’s lab meeting, Nathan Seeley will be giving a presentation entitled “The Essentials of Code Access Security.” The meeting is scheduled for Thursday, 12 January 2006 at 3:00 pm and will be held in the main ISRL lab, room 2221 of the Talmage Building (TMCB). We would like to invite any and all who are interested to attend. Similar meetings will be held throughout the semester, see this page for more details as they become available.

Abstract:

Java and .NET have a sophisticated, configurable way of minimizing the risks of executing certain application code by restricting this code to a limited set of operations. This allows cautious users to be as safe as possible while still allowing potentially valuable applications to run. This improved model allows one to authenticate the author of the code and set policies restricting what resources the foreign code can access based on that authentication. My presentation will cover the basics of this model and will contrast the differences between the Java and the .NET approach.