Main Page

News

Papers assigned

Written on 28.10.24 by Sven Bugiel

Dear all,

The papers have now been assigned and are visible in your CMS account. Unfortunately, the topic choices were strongly biased, and as a result, no optimal solution was found. One paper needed to be forcefully assigned since nobody chose it, and some lower-ranked choices needed to be… Read more

Dear all,

Best,
Noah and Sven

LSF Registration

Written on 25.10.24 by Sven Bugiel

The examination office informed us that the LSF registration will open in the middle of next week. They are still collecting the information from all seminars. Thus, please check again next week, but don't forget to register ;)

Topic Selection

Written on 25.10.24 by Noah Mauthe

The paper choices on your personal status page will work now, sorry for the delay. Please pick your favorites until Sunday night so we can assign topics on Monday.

Van Horn to Fuchsia: Capability-based Access Control

Overview

Capabilities as an access control paradigm have been around for nearly six decades. Still, until recently, they were a little-known access control primitive and not deployed in end-user devices. However, they recently re-emerged with the advent of CHERI and Google Fuchsia. This seminar will discuss how capability systems evolved over the decades and which properties could benefit modern systems. Specifically, mobile, appified systems like Android and iOS.

Since capabilities are a long-established area of research, the selected papers include current and historical works.

Logistics

Location	CISPA E9.1 (see schedule for the room)
Time	Tuesday, 14–16
Meeting	Seminar (Weekly meetings starting November 19)
No. of Students	max. 8
Instructors	Sven Bugiel, Noah Mauthe
Contact	Noah Mauthe (email)
Language	English
Kickoff	October 22, 14–16, room 0.07 at CISPA

Course structure and grading

The course is structured as a standard seminar. Every week, one student will present an assigned paper, which we will discuss. Before this, all students are expected to read the handed-out papers carefully and prepare a list of discussion questions. Additionally, every student will write a short report on their assigned papers, in which the presentation should be elaborated in more detail and potentially include the discussion results. Grading will be based on the presentations (30%), report (50%), and general in-class participation in the discussion (20%). Please note that we expect active participation in the discussions!

Registration and pre-requisites

There are no formal prerequisites. However, students must be familiar with the basics of access control and operating system security to understand the concepts from the literature. For example, by passing the Foundations of Cybersecurity lecture or the Core Lecture Security.

Registration is handled via the central registration system of the UdS.

Presentation schedule and topics

Date	Paper	Presenter	Room
19.11.24	Architectural Features of System 250	Shrivastava, Vedanshi	0.07
26.11.24	CHERI: A Hybrid Capability-System Architecture for Scalable Software Compartmentalization	Ebert, Eduard	1.07
03.12.24	Capacity: Cryptographically-Enforced In-Process Capabilities for Modern ARM Architectures	Christmann, Tim	0.07
10.12.24	Amoeba: a distributed operating system for the 1990s	Wiesen, Robin	2.22
17.12.24	HYDRA: The kernel of a multiprocessor operating system	Kuruvath Sasikumar, Sivadath	0.07
Christmas break
07.01.25	EROS: a fast capability system	Sreenivasa Rao, Devika	0.07
14.01.25	Capsicum: Practical capabilities for UNIX	Granzow, Franziska	0.07
21.01.25	DroidCap: OS Support for Capability-based Permissions in Android	Neman, Sanket	0.07
28.01.25	Seminar Wrap-Up	N/A	0.07