BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:HP: Click Happens: Using Hypervisors for threat containment - Ian 
 Pratt\, Global Head of Security\, HP Inc
DTSTART:20210308T130500Z
DTEND:20210308T135500Z
UID:TALK155794@talks.cam.ac.uk
CONTACT:Ben Karniely
DESCRIPTION:With attack surfaces totalling many tens of millions of lines 
 of code\, common endpoint applications and operating systems pose an easy 
 target for attackers. Users are easily duped into exposing their systems t
 o attack through a variety of means such as malicious email/chat links and
  attachments\, and poisoned web sites and downloads.  \n\nThis talk looks 
 at how a hypervisor can be used to radically improve the security of endpo
 int devices by robustly isolating user activities without changing the use
 r experience. A new VM can be created for each task the user performs (cli
 cking on a link\, opening a document etc)\, and will have access to just t
 he resources needed for that task and no more. The VM lives just for the d
 uration of the task and can then be disposed of\, with only explicitly exp
 ected changes persisted. Threats are thus contained and rendered harmless.
  Further\, the hypervisor can be used to isolate user applications and dat
 a that are more trusted than the host operating system itself\, providing 
 confidentiality and integrity to the most critical tasks. \n\nI will give 
 an overview of some of the many technical challenges involved in building 
 such a system and making it transparent to the end user. I will then relat
 e our experiences securing the hypervisor itself\, the lessons learned ove
 r two decades of security-critical hypervisor design that fed in to the cu
 rrent architecture and implementation.\n
LOCATION:Online
END:VEVENT
END:VCALENDAR