CS Colloquium: Long Lu (Stony Brook University) - New OS and Programming Support for Securing Mobile and IoT Platforms
Thu, Mar 23, 2017 @ 11:00 AM - 12:20 PM
Conferences, Lectures, & Seminars
Speaker: Long Lu, Stony Brook University
Talk Title: New OS and Programming Support for Securing Mobile and IoT Platforms
Series: CS Colloquium
Abstract: This lecture satisfies requirements for CSCI 591: Computer Science Research Colloquium.
Software running on mobile and IoT platforms increasingly falls victim to new attacks, which cause device compromises and privacy leaks that are often more severe than their counterparts on conventional computers. My research finds that new attacks on these platforms are possible primarily due to a gap between the evolving security needs of software and the legacy security support provided by operating systems and programming tools.
In this talk, I will first overview my recent works that aim to bridge this gap by rethinking the principles and designs of security mechanisms in operating systems, compilation toolchains, and TEEs (Trusted Execution Environments). I will then present two systems that address a critical yet previously unmet security need of today's apps, namely in-app isolation. The first system introduces a new OS-managed code execution unit, called shred, to compensate thread and process. A shred is a segment of a thread execution. Code inside a shred can access, in addition to the regular virtual memory, a private memory region. Using shreds, programmers can now protect sensitive in-memory code and data against untrusted code running in the same process or thread. The second system enables comprehensive security policy enforcement at the sub-app granularities, preventing mutually distrusting app modules from abusing each other's resources and privileges. In the final part of the talk, I will discuss my ongoing and future works on laying the system foundation for securing IoT platforms.
Biography: Long Lu is an Assistant Professor of Computer Science and the director of RiS3 Lab at Stony Brook University. Long's research spans the broad area of systems and software security. His recent work is focused on application and operating system security for emerging platforms, such as mobile and IoT/CPS devices. He designs code and data protection mechanisms, program analysis techniques, and user-facing software tools to prevent real attacks. He constantly publishes in the top-tier computer security conferences and is frequently invited to serve on their program committees. His research outcomes have been adopted by IBM, Microsoft, NEC, and Samsung. His work is currently funded by NSF, ONR, ARO, and AFRL. Long is a recipient of the NSF CAREER Award and the Air Force Faculty Fellowship. He holds a Ph.D. in Computer Science from Georgia Tech.
Host: CS Department
Audiences: Everyone Is Invited
Contact: Assistant to CS chair