This event has ended. Create your own event → Check it out
This event has ended. Create your own
View analytic
Friday, October 25 • 2:00pm - 2:30pm
In-Guest Mechanism to Strengthen Guest Separation, Philip Tricca, Citrix

Sign up or log in to save this to your schedule and see who's attending!

Terms related to security like 'disaggregation' and 'stubdom' have found their way into the standard Xen vernacular. Implementations of these architectures still require heavy lifting but examples have made their way into both the open source and commercial products. In this talk Philip presents a lesser known but complimentary method to confine QEMU processes using SELinux type enforcement. This architecture alone is interesting but Philip believes its utility extends beyond QEMU and SELinux. Future problems like inter-VM communication mechanisms hold unique challenges with regard to access control and policy semantics. Philip will argue that an approach influenced by sVirt and user-space object managers will be useful here. As always, attendees should expect tangents into abstract topics like the nature of trust and the utopic world that strong security mechanisms will bring about.


Philip Tricca

Philip has been working at the intersection of OSS, security and virtualization for 5 years. He got his start in a US government research lab which turned out to be the ideal environment for tinkering with Linux and some of the more interesting security infrastructure therein. He went on to contribute to the construction of a client virtualization system. This system is unique in its embedded nature and focus on security. It proved to be a... Read More →

Friday October 25, 2013 2:00pm - 2:30pm
Moorfoot Hall Edinburgh International Conference Centre

Attendees (5)