Die Dozenten der Informatik-Institute der Technischen Universität Braunschweig laden im Rahmen des Informatik-Kolloquiums zu folgendem Vortrag ein.
Stefan Brunthaler, Universität Paderborn: Large-scale Automated Software Diversity Using Programming Language Technology to Enhance Software and System Security
Beginn: 24.02.2017, 10:00 Uhr Ort: TU Braunschweig, BRICS, Rebenring 56, Raum 46 Webseite: http://www.ibr.cs.tu-bs.de/cal/kolloq/2017-02-24-brunthaler.html Kontakt: Prof. Dr. Konrad Rieck
Security is among the most pressing problems in computing today, with high profile breaches receiving notable media coverage and increasingly also impact in daily life. Recently, for example, hackers stole 500 million (sic!) passwords from Yahoo's email service. After briefly talking about the current state of cyber-security, I will be analyzing the current software ecosystem and identify a fundamental flaw: the software monoculture. I will then illustrate return-oriented programming (ROP) and show how software diversity effectively mitigates this attack vector. In addtion I will cover important next steps: adaptive diversification to reduce performance impact and active defenses as a new capability.