Using simple seccomp filters
9 weeks ago by randombit
Looks like finally configurable seccomp is going to make it to mainline.
seccomp
linux
security
9 weeks ago by randombit
Archives of the Caml mailing list > Message from Julian Assange
december 2010 by randombit
"Revealing a passphrase only requires (some of) the brain and jaw or hand to be left functional. Revealing a passphrase is quick and requires few higher cognitive functions, thus it is vulnerable to peak pain, hallucinogens and `truth drugs' such as schopolomine."
security
torture
inspiration
december 2010 by randombit
Crash-Only Software
april 2010 by randombit
Crash-only programs crash safely and recover quickly. There is only one way to stop such softwary - by crashing it - and only one way to bring it up - by initiating recovery.
crashonly
reliability
security
systems
programming
paper
april 2010 by randombit
Internet Cryptography
november 2009 by randombit
Cross reference of crypto RFCs and I-Ds.
crypto
security
ietf
rfc
november 2009 by randombit
Integral Security
october 2009 by randombit
Integer overflow and wraparound are major causes of software vulnerabilities in the C and C++ programming languages. In this paper we present the as-if infinitely ranged (AIR) integer model, which provides a largely automated mechanism for eliminating integer overflow and integer truncation. The AIR integer model either produces a value equivalent to one that would have been obtained using infinitely ranged integers or results in a runtime constraint violation. Unlike previous integer models, AIR integers do not require precise traps, and consequently do not break or inhibit most existing optimizations.
compiler
gcc
security
c
october 2009 by randombit
BBC - Radio 4 Blog: Stephen Fry's In the Beginning was the Nerd
october 2009 by randombit
Interview with Ross Anderson
security
radio
october 2009 by randombit
GOST - The Soviet Encryption Algorithm
march 2009 by randombit
English translation of the GOST Hash function standard
security
crypto
gost
march 2009 by randombit
Threshold Secret Sharing
december 2008 by randombit
This note defines a threshold secret sharing method based on polynomial interpolation in GF(256) and a format for the storage and transmission of shares. It also provides usage guidance, describes how to test an implementation, and supplies test cases.
crypto
security
rfc
internet-draft
cfrg
december 2008 by randombit
The Security Development Lifecycle : Experiences Threat Modeling At Microsoft
december 2008 by randombit
Adam Shostack here. Last weekend, I was at a Security Modeling Workshop, where I presented a paper on “Experiences Threat Modeling at Microsoft,” which readers of this blog might enjoy. So please, enjoy!
security
microsoft
december 2008 by randombit
VX32 Virtual Extension Environment
november 2008 by randombit
Vx32 is a user-mode library that can be linked into arbitrary applications that wish to create secure, isolated execution environments in which to run untrusted extensions or plug-ins implemented as native x86 code.
x86
virtualization
security
sandbox
virtualisation
vx32
vm
november 2008 by randombit
RPyC: Security
november 2008 by randombit
RPyC: Python RPC library using capabilities for distributed message passing ala E
rpc
security
python
capabilities
e-lang
november 2008 by randombit
SNEAKEY ::: Key Bumping is for Hacks
october 2008 by randombit
Long range optical cloning of physical keys
security
keys
optical
october 2008 by randombit
Working Papers from Security and Human Behaviour 2008
july 2008 by randombit
Interdisciplinary Workshop on Security and Human Behaviour
security
psychology
papers
july 2008 by randombit
Light Blue Touchpaper: Security psychology
july 2008 by randombit
Ross Anderson's summary of the workshop on security and human behavior.
security
conference
psychology
july 2008 by randombit
Analysing Object-Capability Security
may 2008 by randombit
We use the process algebra CSP to examine the implementations of a number of OCap patterns and their security properties in various kinds of OCap system.
capabilities
security
distributed
concurrency
csp
may 2008 by randombit
related tags
accesscontrol ⊕ actors ⊕ addon ⊕ algorithm ⊕ analysis ⊕ anonymity ⊕ ansi ⊕ apache ⊕ api ⊕ articles ⊕ asbestos ⊕ asn1 ⊕ assembler ⊕ audio ⊕ authentication ⊕ backup ⊕ banking ⊕ bingo ⊕ bitc ⊕ blog ⊕ book ⊕ bounty ⊕ c ⊕ c# ⊕ c++ ⊕ cache ⊕ capabilities ⊕ caperl ⊕ cfp ⊕ cfrg ⊕ chroot ⊕ code ⊕ compiler ⊕ compilers ⊕ computers ⊕ concurrency ⊕ conference ⊕ conficker ⊕ configuration ⊕ coyotos ⊕ crashonly ⊕ crypto ⊕ crypto04 ⊕ csp ⊕ cyllido ⊕ darpabrowser ⊕ datamining ⊕ design ⊕ dhs ⊕ disassembler ⊕ dissertation ⊕ distributed ⊕ diy ⊕ dns ⊕ dotnet ⊕ drm ⊕ e ⊕ e-lang ⊕ economics ⊕ eke ⊕ embedded ⊕ eros ⊕ essay ⊕ exploit ⊕ exploits ⊕ extension ⊕ filesystem ⊕ finance ⊕ firefox ⊕ firewall ⊕ freebsd ⊕ fuzzing ⊕ gcc ⊕ google ⊕ gost ⊕ government ⊕ grimmeathookfuture ⊕ group ⊕ gui ⊕ gwt ⊕ hardware ⊕ hashfunction ⊕ hci ⊕ hosting ⊕ icmp ⊕ idel ⊕ identity ⊕ ids ⊕ ietf ⊕ infosec ⊕ inspiration ⊕ intelligence ⊕ interesting ⊕ internet ⊕ internet-draft ⊕ iso ⊕ java ⊕ javascript ⊕ jboss ⊕ joux ⊕ kernel ⊕ keys ⊕ lang:asn1 ⊕ lang:e ⊕ lang:php ⊕ language ⊕ law ⊕ library ⊕ linux ⊕ lisp ⊕ log ⊕ mac ⊕ mark.miller ⊕ medicine ⊕ meeting ⊕ microkernel ⊕ microsoft ⊕ military ⊕ minix ⊕ mls ⊕ monitor ⊕ monitoring ⊕ monotone ⊕ mp3 ⊕ multicollision ⊕ naming ⊕ network ⊕ networking ⊕ news ⊕ nh ⊕ nsa ⊕ nukes ⊕ nyc ⊕ ocaps ⊕ okws ⊕ opencm ⊕ opensolaris ⊕ opensource ⊕ operatingsystem ⊕ optical ⊕ os ⊕ p2p ⊕ packetfence ⊕ paper ⊕ papers ⊕ paranoia ⊕ parser ⊕ password ⊕ people ⊕ performance ⊕ perl ⊕ petnames ⊕ pkcs ⊕ plugin ⊕ pola ⊕ policestate ⊕ politics ⊕ powerbox ⊕ privacy ⊕ programming ⊕ protocol ⊕ psychology ⊕ python ⊕ radio ⊕ reference ⊕ reliability ⊕ research ⊕ rfc ⊕ rfc5246 ⊕ risks ⊕ rpc ⊕ ruby ⊕ salsa20 ⊕ sandbox ⊕ scala ⊕ scanner ⊕ scheme ⊕ science ⊕ sdsi ⊕ seccomp ⊕ security ⊖ serialization ⊕ sidechannel ⊕ singularity ⊕ society ⊕ solaris ⊕ spki ⊕ sql ⊕ sqlinjection ⊕ ssh ⊕ ssl ⊕ stack ⊕ standard ⊕ static-analysis ⊕ storage ⊕ streamcipher ⊕ supplies ⊕ sysadmin ⊕ system ⊕ systems ⊕ tap ⊕ technology ⊕ testing ⊕ text ⊕ theory ⊕ tls ⊕ tomoyo ⊕ tool ⊕ toolbox ⊕ toolkit ⊕ tools ⊕ toprint ⊕ torture ⊕ trust ⊕ twisted ⊕ typing ⊕ ui ⊕ university ⊕ unix ⊕ useful ⊕ usenix ⊕ valgrind ⊕ veracode ⊕ versioncontrol ⊕ via:bensherman ⊕ via:captalk ⊕ via:cryptogon ⊕ virtualisation ⊕ virtualization ⊕ visualization ⊕ vm ⊕ vulnerability ⊕ vx32 ⊕ wargames ⊕ web ⊕ webapp ⊕ webappsec ⊕ webserver ⊕ wiki ⊕ world ⊕ worm ⊕ x11 ⊕ x86 ⊕ x86-64 ⊕Copy this bookmark: