Closing the Loop on Secure System Design

1 508
55.9
Опубликовано 23 марта 2018, 21:24
Despite decades of research building secure operating systems, many deployed systems must still choose between flexible application APIs and security. As a result, the vast majority of programmers are unable to improve these systems. This is not merely a result of poor system building. It is hard to design highly extensible systems that are both secure and useful. Moreover, evaluating novel designs with actual developers is critical in order to make sure system builders can adopt research systems in practice.

Fortunately, in emerging application domains, such as the Internet of Things, there are no entrenched operating systems and application portability is less important. This makes it possible evaluate research techniques for building more secure and extensible systems with developers who are willing to adopt them.

I'll describe Tock, an operating system for microcontrollers that enables third-party developers to extend the system. Tock uses the Rust type-system to isolate kernel extensions and the hardware to isolate applications. I'll discuss how we continuously evaluate Tock by engaging with practitioners, and how lessons from practitioners have fed back into the system's design.

See more at microsoft.com/en-us/research/v...
Свежие видео
11 дней – 3 888 14613:38
My wife insisted I do this for her
13 дней – 108 3225:29
Are Buttons Going Away…or Coming Back?
15 дней – 154 3250:21
Paige Bueckers loves an assist | Chrome
автотехномузыкадетское