BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Hierarchies\, Lowerarchies\, Anarchies\, and Plutarchies: Historic
 al Perspectives of Composably Layered High-Assurance Architectures - Peter
  Neumann\, Principal Scientist\, SRI International Computer Science Lab
DTSTART:20101012T151500Z
DTEND:20101012T161500Z
UID:TALK26719@talks.cam.ac.uk
CONTACT:Stephen Clark
DESCRIPTION:This talk will consider some of the challenges of holistically
  designing predictably trustworthy system and network architectures\, with
  consideration of various past efforts and some prospects for the future. 
 In scope are topics such as what might be called the father and son of hie
 rarchical trustworthy systems\, respectively Multics (rings\, symbolic dyn
 amic linking\, nested directories) and SRI ’s Provably Secure Operating 
 System PSOS design (tagged and typed more-or-less object-oriented capabili
 ties in hardware and software)\, MLS and MILS architectures (beginning wit
 h KSOS and KVM )\, separation kernels and virtual machines (with pointers 
 to Rushby and DeLong’s recent work). Some of the underlying concepts are
  of course abstraction\, modularity\, strong encapsulation\, explicit mapp
 ings between layers\, explicit dependency analyses\, high assurance\, and 
 basic principles that can enhance modular composition\, considered in my D
 ARPA CHATS report\, Principled Assuredly Trustworthy Composable Architectu
 re. As an example of the pervasive interdependencies that must be addresse
 d\, I will briefly summarize some aspects of A Roadmap for Cybersecurity R
 esearch that we developed for Doug Maughan at the U.S. Department of Homel
 and Security\, November 2009.
LOCATION:Lecture Theatre 2\, Computer Laboratory
END:VEVENT
END:VCALENDAR