We're sorry but this page doesn't work properly without JavaScript enabled. Please enable it to continue.
Feedback

CloudABI: Capability based security on Linux/Unix

00:00
subtitles
off
playback rate
1
subtitles
off
English (auto-generated)
playback rate
0.25
0.5
0.75
1
1.25
1.5
1.75
2
quality
576p
54
 Cite
 Share
 Related Material
 Download Purchase
Logo of EuroPythonEuroPython
 Willmer, Alex

Formal Metadata

Title
CloudABI: Capability based security on Linux/Unix
Title of Series
Part Number
28
Number of Parts
169
Author
License
CC Attribution - NonCommercial - ShareAlike 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal and non-commercial purpose as long as the work is attributed to the author in the manner specified by the author or licensor and the work or content is shared also in adapted form only under the conditions of this
Identifiers
Publisher
Release Date
Language

Content Metadata

Subject Area
Genre
Abstract
Alex Willmer - CloudABI: Capability based security on Linux/Unix Take POSIX, add capability-based security, then remove anything that conflicts. The result is CloudABI, available for BSD, Linux, OSX et al. A CloudABI process is incapable of any action that has a global impact It can only affect the file descriptors you provide. As a result even unknown binaries can safely be executed - without the need for containers, virtual machines, or other sandboxes. This talk will introduce CloudABI, how to use it with Python, the benefits, and the trade-offs. ----- [CloudABI] is a new POSIX based computing environment that brings [capability-based security] to BSD, Linux, OSX et al. Unlike traditional Unix, if a CloudABI process goes rogue it _cannot_ execute random binaries, or read arbitrary files. This is achieved by removing `open()` & any other API able to acquire global resources. Instead a CloudABI process must be granted _capabilities_ to specific resources (e.g. directories, files, sockets) in the form of file descriptors. If a process only has a descriptor for `/var/www` then it's _incapable_ of affecting any file or folder outside that directory. This talk will - Review the security & reusability problems of Linux & Unix processes - Introduce capability-based security - Summarize the design of CloudABI - its benefits & trade-offs - Demonstrate how to write Python software for CloudABI & run it - Point out the pitfalls & gotchas to be aware of - Discuss the current & future status of CloudABI CloudABI began life on FreeBSD. It also runs DragonFly BSD, NetBSD, PC-BSD, Arch Linux, Debian, Ubuntu, & OS X. The API & ABI are kernel agnostic - a CloudABI binary can run on any supported kernel. The design is evolved from [Capsicum], a library that allows processes to drop access to undesired syscalls at runtime. CloudABI applies this at build time to make testing & lock- down easier.
00:00
Information security1 (number)Information securityFormal grammarContent (media)Cycle (graph theory)Line (geometry)RoboticsLecture/Conference
00:48
Insertion lossCycle (graph theory)Data miningMereologyInheritance (object-oriented programming)Source code
01:38
TelecommunicationMusical ensembleTelecommunicationDivisorMusical ensembleSynchronizationMultiplication signIncidence algebraWave packetLecture/ConferenceComputer animation
02:14
2 (number)Fiber (mathematics)Food energyMotion captureCASE <Informatik>KinematicsLecture/ConferencePanel painting
02:58
Data miningMultiplication signPosition operatorDivisorNatural numberLecture/Conference
03:32
Charge carrierCharge carrierMotion captureExecution unitPlanningRule of inferencePhysical systemExistenceOperating systemIntelComputer animation
04:30
WordEmailCommunications protocolBell and HowellPhysical systemComputer virusCodeSoftware developerWeightLecture/Conference
04:58
Computer virusPrimitive (album)Field (computer science)Replication (computing)Charge carrierFamilyComputer animation
05:37
CausalityMathematical analysisRootCausalityRootField (computer science)Constructor (object-oriented programming)Decision theoryProcedural programmingMathematical analysisLecture/Conference
06:15
RootCausalityMathematical analysisComputer fileOrder (biology)Buffer overflowComputer architectureTrojanisches Pferd <Informatik>Table (information)WeightTraffic reportingSocket-SchnittstelleLecture/Conference
07:06
ArchitectureZugriffskontrolleComputer architectureGame controllerBoiling pointPhysical systemComputer programSoftware testingDefault (computer science)Integrated development environmentData structureState of matterOperating systemInformation securityLecture/Conference
08:09
System administratorRevision controlExecution unitReverse engineeringPhysical systemScaling (geometry)Lecture/Conference
08:45
Information securityComputer programClient (computing)Semiconductor memoryPoint cloudResultantBinary codeStaff (military)Thread (computing)Befehlsprozessor
09:53
Process (computing)ResultantVirtual machineOperating systemDerivation (linguistics)Functional (mathematics)Level (video gaming)MultiplicationBitPoint cloudProjective planeHuman migrationInformation securityFreewareSystem callSpherical capWeightLecture/Conference
11:31
Information securitySystem callLibrary (computing)Projective planePseudozufallszahlenProcess (computing)Phase transitionComputer fileRun time (program lifecycle phase)
12:02
Computer filePoint cloudSystem callProcess (computing)DatabasePrincipal ideal domainDefault (computer science)Physical systemLecture/Conference
12:44
Process (computing)File systemComputer fileBuffer overflowZustandsgrößePoint cloud1 (number)Functional (mathematics)Operator (mathematics)Buffer solutionCategory of beingExterior algebraStatisticsSound effectSoftware bug2 (number)Thread (computing)Operating systemObject (grammar)JSON
13:53
Standard errorExterior algebraComputer programStandard deviationPoint cloudParameter (computer programming)Message passingProcess (computing)Lecture/ConferenceJSON
14:32
Token ringComputer fileString (computer science)Process (computing)Token ringComputer fileDirectory serviceNetwork socketPoint cloudLecture/ConferenceComputer animation
15:23
Single-precision floating-point formatComputer fileToken ringInterface (computing)Cartesian coordinate systemSingle-precision floating-point formatProcess (computing)Binary codePhysical systemCompilerLecture/ConferenceComputer animation
15:57
FingerprintLevel (video gaming)Physical systemFreewareArithmetic progressionCASE <Informatik>Point (geometry)Lecture/Conference
16:34
Scripting languageDifferent (Kate Ryan album)MereologyUtility softwareMessage passingSource codeContent (media)Endliche ModelltheorieoutputComputer fileOperating systemStandard deviationDirectory serviceSingle-precision floating-point formatProcess (computing)Mathematical analysisString (computer science)Computer programNumberRead-only memoryElectronic mailing listResultantSystem callOperator (mathematics)Open sourceExact sequenceSource codeJSON
18:52
Point cloudComputer programMechanism designPhysical systemSequenceSet (mathematics)Functional (mathematics)Computer fileMappingoutputFunction (mathematics)Descriptive statisticsContent (media)Electronic mailing listScripting languageProcess (computing)Online helpError messageSingle-precision floating-point formatStandard errorLevel (video gaming)Network topologyStructured programmingResultantOpen setKey (cryptography)Data structureLecture/ConferenceSource codeJSON
20:41
Open sourceComputer programoutputPoint (geometry)HypothesisPoint cloudArithmetic progressionMoment (mathematics)Lecture/Conference
21:33
World Wide Web ConsortiumServer (computing)Web 2.0Server (computing)Computer fileSoftwareContent (media)Configuration spaceString (computer science)Network socketParameter (computer programming)Moment (mathematics)Order (biology)Point cloudStreaming mediaOnline helpJSON
22:49
Service (economics)SoftwareSoftwarePoint cloudPlug-in (computing)Physical systemLimit setOperating systemEntire functionComputer fileLecture/Conference
23:20
SoftwareService (economics)Vulnerability (computing)Physical systemCloud computingGoogle App EngineResultantLibrary (computing)Assembly languageVirtual machineCartesian coordinate systemOverhead (computing)outputComputer programFormal languageTheoryMedical imagingOrder (biology)Videoconferencing3 (number)VirtualizationLecture/Conference
24:51
Chi-squared distributionComputer fileDirectory serviceComputer-assisted translationProgrammable read-only memoryBinary fileInstallation artOrdinary differential equationLetterpress printingDegree (graph theory)Natural languageTouchscreenSharewarePhysical systemOnline helpPressureKey (cryptography)Computer fileBinary codeRevision controlComputer programGodContent (media)Order (biology)EmailFunction (mathematics)Moment (mathematics)Arithmetic progressionParameter (computer programming)Combinational logicSubsetStandard deviationMultiplication signoutputRight anglePoint cloudClient (computing)Lecture/ConferenceComputer animation
27:18
Arc (geometry)Computer-assisted translationLibrary (computing)System callStandard errorLibrary (computing)Process (computing)Binary codeResultantOrder (biology)Standard deviationBefehlsprozessorRight anglePhysical systemContent (media)Read-only memoryCASE <Informatik>Scripting languageComputer fileLecture/ConferenceComputer animation
28:38
Open sourceEvent horizonInformationAddress spacePoint cloudSoftwarePhysical systemTap (transformer)Forcing (mathematics)Lecture/Conference
29:19
System administratorSoftware developerMultiplicationMereologyExecution unitUniverse (mathematics)Physical systemMultiplication signNumberFrequencyINTEGRALDistribution (mathematics)Moment (mathematics)Repository (publishing)Information securitySoftwareProduct (business)Configuration spaceBinary codeSynchronizationLevel (video gaming)Computer programCycle (graph theory)ResultantProcess (computing)Shared memoryLibrary (computing)NeuroinformatikInheritance (object-oriented programming)Pattern languageOverhead (computing)Element (mathematics)Focus (optics)Operating systemMobile appSubsetPoint cloudPhase transitionCuboidOrbitFreewareLecture/Conference
34:45
Degree (graph theory)Graph (mathematics)SequelPulse (signal processing)CAN busRing (mathematics)Revision controlSpecial unitary groupWeightLaceBranch (computer science)Maxima and minimaArmScalable Coherent InterfaceGrand Unified TheoryRun time (program lifecycle phase)CuboidEndliche ModelltheorieSoftwareOrder (biology)Interactive televisionBinary codeSoftware developerComputer fileProcess (computing)DemonGastropod shellSource codeProgram flowchartLecture/Conference
35:36
Point cloudLink (knot theory)Lecture/Conference
Transcript: English(auto-generated)