Dr. Angelos D. Keromytis, Toward Self-healing Software
CERIAS Weekly Security Seminar - Purdue University
English - October 19, 2005 04:00 - 50 minutes - 204 MB Video - ★★★★ - 6 ratingsTechnology Education Courses infosec security video seminar cerias purdue information sfs research education Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
As systems grow in size and complexity, our ability to protect them through manual intervention or static defenses degrades. We believe
that, in addition to proper design principles and proactive mechanisms,
automated reactive approaches must be employed to close the gap in
the attacker vs. defender capabilities. Toward this goal, we have
been examining the possibility of software systems that self-diagnose
and repair themselves in the presence of previously unknown attacks
and failures, with minimal or no human intervention.
In this talk, I will discuss our research in self-healing software
systems. I will introduce the concepts of "micro-speculation" and
"error virtualization", which can be combined to provide a generic
mechanism for dealing with low-level software failures and vulnerabilities. I will describe the use of these techniques in
two system prototypes of self-healing software that address such vulnerabilities: the Worm Vaccine architecture and STEM (Selective
Transactional EMulation). I will close the talk with a discussion
of our preliminary work toward software Application Communities,
groups of identical instances of an application that cooperate
to improve their collective security. About the speaker: Angelos Keromytis is an Assistant Professor of Computer Science at
Columbia University. He received his MS and PhD from the
University of Pennsylvania, and his BS (all in Computer
Science) from the University of Crete, in Greece. His research
interests include network and system survivability, authorization and
access control, and large-scale systems security. In a previous life,
he had enough time to contribute code to the OpenBSD project. His
increasingly outdated home page can be found at
http://www.cs.columbia.edu/~angelos
As systems grow in size and complexity, our ability to protect them through manual intervention or static defenses degrades. We believe
that, in addition to proper design principles and proactive mechanisms,
automated reactive approaches must be employed to close the gap in
the attacker vs. defender capabilities. Toward this goal, we have
been examining the possibility of software systems that self-diagnose
and repair themselves in the presence of previously unknown attacks
and failures, with minimal or no human intervention.
In this talk, I will discuss our research in self-healing software
systems. I will introduce the concepts of "micro-speculation" and
"error virtualization", which can be combined to provide a generic
mechanism for dealing with low-level software failures and vulnerabilities. I will describe the use of these techniques in
two system prototypes of self-healing software that address such vulnerabilities: the Worm Vaccine architecture and STEM (Selective
Transactional EMulation). I will close the talk with a discussion
of our preliminary work toward software Application Communities,
groups of identical instances of an application that cooperate
to improve their collective security. About the speaker: Angelos Keromytis is an Assistant Professor of Computer Science at
Columbia University. He received his MS and PhD from the
University of Pennsylvania, and his BS (all in Computer
Science) from the University of Crete, in Greece. His research
interests include network and system survivability, authorization and
access control, and large-scale systems security. In a previous life,
he had enough time to contribute code to the OpenBSD project. His
increasingly outdated home page can be found at
http://www.cs.columbia.edu/~angelos