Mitigating LangSec Problems With Capabilities
Offered By: IEEE via YouTube
Course Description
Overview
Explore a 24-minute IEEE conference talk that delves into mitigating language-based security (LangSec) problems using capability-based systems. Learn how the Sandstorm system, a capability-based, private-by-default environment for running web applications, addresses LangSec vulnerabilities through robust isolation and proactive security measures. Discover how capability systems can transform complex authorization decisions into syntactic constraints on requests, potentially simplifying security implementations. Examine the impact of Sandstorm's systematic protection across multiple system levels in reducing the severity of LangSec bugs in hosted applications. Gain insights into the characterization of addressed vulnerabilities using MITRE's Common Weakness Enumeration (CWE) scheme, and understand the potential benefits of capability-based systems for the LangSec community.
Syllabus
Mitigating LangSec Problems With Capabilities
Taught by
IEEE Symposium on Security and Privacy
Tags
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network