UTCS Colloquia: Andrew Myers/Associate Professor Cornell University Making distributed systems secure by construction ACES 6.304 (ICES)
There is a signup schedule for this event.
Type of Ta
Speaker Name: Andrew Myers Associate Professor
br>Speaker Affiliation: Cornell University Ithaca New York
October 9 2006
Start Time: 4:30p.m.
Location: ACES 6.304
Host: CIAS & Freescale
Talk Title: Making distribute
d systems secure by construction
information systems we use every day are
becoming more complex and int
erconnected. Can we trust them
with our information? Many mechanisms ar
e available to ensure
information security: for example encryption va
protocols access control and replication. Curren
is no good way to check that complex distributed software
uses information securely even if we have the source code.
tly lack both sufficiently expressive ways to
specify information secur
ity requirements and sufficiently
accurate methods for checking them.<
This talk describes a way to build systems that are secure
nstruction. Programs are annotated with explicit security
ifying the confidentiality integrity and
availability of information.
The compiler automatically
uses a combination of techniques to transfo
rm the source
code to run securely on the available host machines. The
compiler introduces quorum replication to satisfy both integrity
d availability policies. It introduces partitioning encryption
e-way hashing to satisfy confidentiality policies.
To accommodate the n
eeds of realistic applications the
information security policies are a
lso enriched to support
new notions of ownership declassification rob
and erasure. These policies have precise semantics and
e construction process can be shown to enforce policies
in terms of the
Joint work with Lantian Zheng Steve Chong Andrei Sab
and Steve Zdancewic.
Andrew Myers is
an Associate Professor in the Computer Science
Department at Cornell Un
iversity in Ithaca NY. He received
his Ph.D. in Electrical Engineering
and Computer Science
from MIT in 1999.
His research interests i
nclude computer security programming
languages and distributed and pe
rsistent objects. His work
on computer security has focused on practica
l sound expressive
languages and systems for enforcing information se
The Jif programming language makes it possible to write
grams which the compiler ensures are secure. The Polyglot
mpiler framework is now widely used for programming
Andrew is the recipient of an NSF CAREER award an Alfred
an Fellowship a College of Engineering Abraham T.
C. Wong ''72 Excelle
nce in Teaching Award a George M. Sprowls
award for outstanding Ph.D.
thesis from MIT and a best
paper award for a paper in SOSP 2001.
- Awards & Honors
- About Us
- Student Engagement and Support
- Masters Program
- Ph.D. Program
- Financial Information
- Prospective Students
- Incoming Students
- Current Students
- Curricular Practical Training
- Grad Student Talks
- UTCS Direct