Select a calendar:
Filter April Events by Event Type:
SUNMONTUEWEDTHUFRISAT
Events for April 01, 2008
-
SHOWCASE: Art
Tue, Apr 01, 2008 @ 11:00 AM - 02:00 PM
Viterbi School of Engineering Student Affairs
Student Activity
SHOWCASE: Art will highlight the great artistic talents of our undergraduate students and faculty. From photography to sculptures to paintings, there is something for everyone! Stop by to see these great works and vote on your favorite piece.For more information about SHOWCASE, visit the KIUEL website:http://viterbi.usc.edu/kiuel/No RSVP required.
Location: Viterbi Museum (2nd Floor Ronald Tutor Hall)
Audiences: Undergraduate Students & Faculty
Contact: Women in Engineering
-
CS Colloq: Securing the Web With Decentralized Information Flow Control
Tue, Apr 01, 2008 @ 03:30 PM - 05:00 PM
Thomas Lord Department of Computer Science
Conferences, Lectures, & Seminars
Title: Securing the Web With Decentralized Information Flow ControlSpeaker: Maxwell Krohn (MIT)Abstract:
The recent successes of server-side applications (e.g. Google and Facebook applications) hint that tomorrow's computing platform might not be the local desktop but rather the extensible remote Web site. Unfortunately, these new server-side platforms, built on conventional operating systems, are committing the same security mistakes already ossified in today's insecure desktops. In this talk, I will discuss how to secure both today's Web sites and tomorrow's Web computing platforms with a new OS technique called Decentralized Information Flow Control (DIFC). A DIFC system tracks the flow of secret data as it is copied from file to file and communicated from process to process. In the end, the OS lets modules known as "declassifiers" legislate policies for secret data exiting to the network. DIFC provides better security than standard OSes because it allows developers to concentrate security-critical code in small, audit-friendly declassifiers, which remain small and contained even as the overall system balloons with new features. This talk presents DIFC, an implementation of DIFC for Linux, and a case study of a complex, popular open-source application (MoinMoin Wiki) secured with DIFC. MoinMoin is a prototype for more ambitious and general work to come, such as a novel Web-based application platform with encouraging security guarantees. Joint work with: Micah Brodsky, Natan Cliffer, Petros Efstathopoulos, Cliff Frey, Eddie Kohler, David Mazieres, Robert Morris, Frans Kaashoek, Steve VanDeBogart, Mike Walfish, Alex Yip, David ZieglerBiography:
Maxwell Krohn is a PhD candidate in Computer Science at MIT. He received his BA from Harvard in 1999, and was a staff research scientist at NYU from 2002-2003. In between, he co-founded and co-built several community Web sites, some vintage (TheSpark.com), others live and kicking (SparkNotes.com and OkCupid.com). His research interests are in operating systems, distributed systems and security.Location: Seaver Science Library (SSL) - 150
Audiences: Everyone Is Invited
Contact: CS Colloquia
