equal
deleted
inserted
replaced
33 \end{tabular} |
33 \end{tabular} |
34 \end{center} |
34 \end{center} |
35 |
35 |
36 \end{frame} |
36 \end{frame} |
37 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
37 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
38 |
|
39 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
40 \begin{frame}[c] |
|
41 |
|
42 \begin{center} |
|
43 \includegraphics[scale=0.34]{../pics/trainwreck.jpg}\\ |
|
44 last week: buffer overflow attacks |
|
45 \end{center} |
|
46 |
|
47 \begin{itemize} |
|
48 \item no ``cheating'' needed for format string attacks; |
|
49 \item the main point, no real cheating (Facebook no; printer, router |
|
50 etc yes) |
|
51 \end{itemize} |
|
52 \end{frame} |
|
53 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
54 |
38 |
55 |
39 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
56 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
40 \begin{frame}[c] |
57 \begin{frame}[c] |
41 \frametitle{Survey: Thanks!} |
58 \frametitle{Survey: Thanks!} |
42 \small |
59 \small |
63 |
80 |
64 \begin{center} |
81 \begin{center} |
65 \includegraphics[scale=0.45]{../pics/trainwreck.jpg}\\ |
82 \includegraphics[scale=0.45]{../pics/trainwreck.jpg}\\ |
66 last week: buffer overflow attacks |
83 last week: buffer overflow attacks |
67 \end{center} |
84 \end{center} |
|
85 |
|
86 \end{frame} |
|
87 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
88 |
|
89 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
90 \begin{frame}[c] |
|
91 \frametitle{\begin{tabular}{c}Two General Counter\\[-1mm] |
|
92 Measures against BOAs etc\end{tabular}} |
|
93 |
|
94 Both try to reduce the attack surface:\bigskip |
|
95 |
|
96 \begin{itemize} |
|
97 \item \alert{\bf unikernels} -- the idea is to not have |
|
98 an operating system at all |
|
99 \item all functionality of the server is implemented in a |
|
100 single, stand-alone program |
|
101 \item all functionality an operating system would normally |
|
102 provide (network stack, file system) is available through |
|
103 libraries |
|
104 \item the best known unikernel is MirageOS using Ocaml |
|
105 (\url{https://mirage.io}) |
|
106 \end{itemize} |
68 |
107 |
69 \end{frame} |
108 \end{frame} |
70 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
109 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
71 |
110 |
72 |
111 |