Functionality-Based Application Confinement

Starts: Tuesday 09 March 2010, 5:15PM

Finishes: Saturday 27 March 2010, 5:15PM

Venue: Ernst and Young, 11 Mounts Bay Road, Perth WA 6000

Topic: "Functionality-Based Application Confinement: A New Scheme for Restricting Applications" - User oriented security solutions utilised by popular operating systems such as Linux and Windows do not adequately protect users against the threat posed by zero day malware or exploits. These access control models typically authorise processes to run with all the privileges of the users who execute them. However, there are many reasons to distrust the programs you execute, as they may not act on your behalf. Security systems exist which restrict the actions of each application; however, these are typically hard to use and manage.

A new scheme for restricting applications has been developed, known as Functionality Based Application Confinement (FBAC). In this presentation, Z. Cliffe Schreuders will give an overview of some of the problems with previous security solutions, and will introduce FBAC and the Linux implementation.

Speaker: Z. Cliffe Schreuders

Z. Cliffe Schreuders is a PhD candidate at Murdoch University, Western Australia and an AISA member. Recently Cliffe has presented at academic and Linux conferences in England, Portugal, New Zealand and Australia. His current research aims to provide more useable application restrictions.

Many thanks to our sponsors:

AISA thanks Ernst & Young for providing the venue for our Perth Branch meetings.