DATE: Thursday, January 29, 2004
TIME: Noon - 1 pm
PLACE: Wean Hall 8220

SPEAKER:
Andrew Myers
Cornell University

TITLE:
Building Distributed Systems Secure By Construction

ABSTRACT:
Building secure distributed systems typically involves the use of a variety of different mechanisms, such as encryption, digital signatures, access control, and replication. Once the system is built, it is difficult to know that system-level security objectives have been achieved.

In this talk I will present secure program partitioning, a new way to enforce security policies for data confidentiality and integrity in a distributed environment. Programs annotated with security policies are statically checked and then transformed by the compiler to run securely on a distributed system with untrusted hosts. The code and data of the computation are partitioned and replicated across the available hosts in accordance with the security policies, and the compiler automatically generates secure run-time protocols for communication among the replicated code partitions. We have shown that programs such as games and auctions can be automatically transformed to run securely and with reasonable
efficiency.

BIO:
Andrew Myers is an Assistant Professor at Cornell University. He received a Ph.D. in Computer Science from MIT in 1999. His research interests include computer security, programming languages, and distributed object systems. His recent work has focused on making language-based information flow an expressive and practical way to build secure systems.

HOST:
M. Satyanarayanan

SDI / LCS Seminar Questions?
Karen Lindenfelser, 86716, or visit www.pdl.cmu.edu/SDI/