skip to main content
cu: home | engineering | cuconnect | explore cu | cu a-z | search cu | contact cu cs: about | calendar | directory | catalog | schedules | mobile | contact cs
home | quick links | site map | who's where | cs a-z
people events courses undergraduate graduate research department site
home · events · colloquia · 2004-2005 · 
 

Colloquium - Vachharajani
 
2/17/2005
3:30pm-4:30pm
ECCR 265

ICAL
RIFLE: An Architectural Framework for User-Centric Information-Flow Security
Neil Vachharajani
Princeton University

Even as modern computing systems allow the manipulation and distribution of massive amounts of information, users of these systems are unable to manage the confidentiality of their data in a practical fashion. Conventional access control security mechanisms cannot prevent the illegitimate use of privileged data once access is granted. For example, information provided by a user during an online purchase may be covertly delivered to malicious third parties by an untrustworthy web browser. Existing information-flow security mechanisms do provide this assurance, but only for programmer-specified policies enforced during program development as a static analysis on special-purpose type-safe languages. Not only are these techniques not applicable to many commonly used programs, but they leave the user with no defense against malicious programmers or altered binaries.

In this talk, we propose RIFLE, a runtime information-flow security system designed from the user's perspective. By addressing information-flow security using architectural support, RIFLE gives users a practical way to enforce their own information-flow security policy on all programs. We prove that, contrary to statements in the literature, runtime systems like RIFLE are no less secure than existing language-based techniques. Using a model of the architectural framework and a binary translator, we demonstrate RIFLE's correctness and illustrate that the performance cost is reasonable.

Neil Vachharajani is a third year graduate student in the Department of Computer Science at Princeton University. Neil is presently working with the Liberty Research Group to develop compiler and architectural techniques to enhance computer security and to target next generation chip multiprocessor architectures. Neil has been an active participant in the development of the Liberty Simulation Environment, a toolset for modeling computer architectures. Neil is a member of the Tau Beta Pi engineering honor society, a recipient of Princeton University's Calvin Dodd MacCracken Senior Thesis/Project Award, and is a National Science Foundation Graduate Fellow.

Hosted by John Black.

The Department holds colloquia throughout the Fall and Spring semesters. These colloquia, open to the public, are typically held on Thursday afternoons, but sometimes occur at other times as well. If you would like to receive email notification of upcoming colloquia, subscribe to our Colloquia Mailing List. If you would like to schedule a colloquium, see Colloquium Scheduling.

Sign language interpreters are available upon request. Please contact Stephanie Morris at least five days prior to the colloquium.

 
See also:
Department of Computer Science
College of Engineering and Applied Science
University of Colorado at Boulder
Boulder, CO 80309-0430 USA 		Questions/Comments?
Send email to

 Engineering Center Office Tower
ECOT 717
+1-303-492-7514
FAX +1-303-492-2844
XHTML 1.0/CSS2 ©2009 November 8, 2009 (00:26)
 
.