gone but not forgotten the current state of private
play

Gone, But Not Forgotten: The Current State of Private Computing - PowerPoint PPT Presentation

Feb 28, 2024 •105 likes •399 views

Gone, But Not Forgotten: The Current State of Private Computing Aseem Rastogi Jun Yuan Rob Johnson University of Maryland, College Park Stony Brook University Web browser private mode Web browser private mode Why is the

  1. Gone, But Not Forgotten: The Current State of Private Computing Aseem Rastogi ∗ Jun Yuan † Rob Johnson † ∗ University of Maryland, College Park † Stony Brook University

  2. Web browser private mode

  3. Web browser private mode ● Why is the private mode desirable for web browsers?  People can use web browser private mode to surf online without leaving a trace on their computers.

  4. More...

  5. Major Themes ● Opinion #1: Private computing should be implemented as a OS service. ● Opinion #2: Private computing should be efficient, usable and complete. ● Opinion #3: Modern OS features and organization will make it practical to make such a private computing service.

  6. Threat Model Passive attacker with Local privilege Can inspect before and after Can inspect every component of the system No key-logger and malicious app: Out of the scope

  7. Web browser private mode ● The current issues of web browser private mode For the local attack, ➢ Software engineering difficulty. Complete mediation by manual code review is hard to achieve.

  8. Web browser private mode ● The current issues of web browser private mode For the local attack, ➢ Software engineering difficulty. Complete mediation by manual code review is hard to achieve. ➢ The traces left in swap, browser memory, kernel buffers and IPC

  9. private data Kernel Proxy Peripheral Device Drivers

  10. IPC Swap Write Kernel Proxy Peripheral Device Drivers

  11. ● After the process exits, there are still many spots left with private data Kernel Proxy Peripheral Device Drivers

  12. Web browser private mode ● The current issues of web browser private mode For the local attack, ➢ Software engineering difficulty. Complete mediation by manual code review is hard to achieve. ➢ The traces left in swap, browser memory, kernel buffers and IPC ✔ Extensions and plugins undermines the private mode.

  13. Goals ● Private computing should offer strong assurance of privacy ● Private computing should be lightweight and pay-as-go ● Private computing should not impact user experience The bookmarks in the public mode should be accessible in the private browser mode. ● Private computing should support a variety of applications.

  14. Design of PCM The kernel is patched to erase the kernel buffers, Kernel stack, kernel heap upon recycling Kernel Proxy Peripheral Device Drivers

  15. Design of PCM Union FS Kernel Proxy Peripheral Device Drivers

  16. Design of PCM lxc Union FS Kernel Proxy Peripheral Device Drivers

  17. Design of PCM IPC lxc Union FS Kernel Proxy Peripheral Device Drivers

  18. Design of PCM IPC lxc Union FS Kernel Proxy Peripheral Device Drivers

  19. Design of PCM IPC lxc Union FS Kernel Proxy Peripheral Device Drivers

  20. Design of PCM IPC lxc Union FS swap write Kernel Proxy Peripheral Device Drivers

  21. Upon the exit of the container The addr space of contained processes are zero-ed. lxc Union FS Kernel Proxy Peripheral Device Drivers

  22. Upon the exit of the container lxc Union FS Kernel buffers are zero-ed . Kernel Proxy Peripheral Device Drivers

  23. Upon the exit of the container lxc Union FS Kernel Proxy Peripheral Device Drivers The to-be-retained data decided by policy engine is written to underlying fs

  24. Upon the exit of the container lxc Union FS Kernel Proxy Peripheral Device Drivers The swap which lies in encrypted loop device and to-be-discarded write are automatically discarded once the encryption key is destroyed

  25. Upon the exit of the container lxc Union FS Kernel Proxy Peripheral Device Drivers The proxy of peripheral device (1) zero while unmapping (2) dummy output to overwrite the finite buffer

  26. Related work ● Lacuna[2] ● PrivExec[3]

  27. Reference [1] G. Aggarwal, E. Bursztein, C. Jackson, and D. Boneh. An analysis of private browsing modes in modern browsers. In USENIX, 2010. [2] A. M. Dunn, M. Z. Lee, S. Jana, S. Kim, M. Silberstein, Y. Xu, V. Shmatikov, and E. Witchel. Eternal sunshine of the spotless machine: protecting privacy with ephemeral channels. In OSDI, 2012. [3]Kaan Onarlioglu, Collin Mulliner, William Robertson, Engin Kirda PrivExec: Private Execution as an Operating System Service In Proceedings of the IEEE Symposium on Security and Privacy (S&P) [4] J. Chow, B. Pfaff, T. Garfinkel, and M. Rosenblum. Shredding your garbage: reducing data lifetime through secure deallocation. In USENIX, 2005.

  28. ● Private computing should be implemented as a OS service. ● Private computing should be efficient, usable and complete. ● Modern OS features and organization will make it practical to make such a private computing service.

Recommend

The Forgotten Presidents The Forgotten Presidents The Forgotten Presidents The Forgotten

The Forgotten Presidents The Forgotten Presidents The Forgotten Presidents The Forgotten

The Forgotten Presidents The Forgotten Presidents The Forgotten Presidents The Forgotten Presidents The Forgotten Presidents The Forgotten Presidents The Forgotten Presidents The Forgotten Presidents Presenter: William O. Stone Presenter:

226 views • 18 slides
Private higher education in the UK: historical trends and its current state Centre for Global

Private higher education in the UK: historical trends and its current state Centre for Global

Private higher education in the UK: historical trends and its current state Centre for Global Higher Education Seminar: 10 th January 2019 Stephen Hunt, UCL IOE 1 1 2 2 Private HE Regulations Private higher education sector in the UK subject

758 views • 46 slides
The Right to be The Right to be Forgotten Forgotten Engineering & Public Policy Rebecca

The Right to be The Right to be Forgotten Forgotten Engineering & Public Policy Rebecca

CyLab The Right to be The Right to be Forgotten Forgotten Engineering & Public Policy Rebecca Balebako September 4, 2014 y & c S a e v c i u r P r i t e y l b L a a s b U o 8-533 / 8-733 / 19-608 / 95-818:

765 views • 24 slides
SAP IGS SAP IGS THE 'VULNERABLE' FORGOTTEN COMPONENT THE 'VULNERABLE' FORGOTTEN COMPONENT Yvan

SAP IGS SAP IGS THE 'VULNERABLE' FORGOTTEN COMPONENT THE 'VULNERABLE' FORGOTTEN COMPONENT Yvan

SAP IGS SAP IGS THE 'VULNERABLE' FORGOTTEN COMPONENT THE 'VULNERABLE' FORGOTTEN COMPONENT Yvan GENUER - Troopers 2018 DISCLAIMER DISCLAIMER Can't disclose too much Nothing hardcore Skipping 'What is SAP' part BAPI_USER_GET_DETAIL

1.32k views • 105 slides
Public-Private Partnerships (P3) January 17, 2018 US P3 Market Landscape 1 The Current State of

Public-Private Partnerships (P3) January 17, 2018 US P3 Market Landscape 1 The Current State of

Public-Private Partnerships (P3) January 17, 2018 US P3 Market Landscape 1 The Current State of US Infrastructure D+ January 17, 2018 US P3 Market Landscape 2 The Funding Challenge: Local, State, and Federal Governments Struggle to Fund

664 views • 23 slides
Finite State Machine (FSM) Consists of: CLK State register S S Next Current

Finite State Machine (FSM) Consists of: CLK State register S S Next Current

Finite State Machine (FSM) Consists of: CLK State register S S Next Current Stores current state State State Loads next state at clock edge Combinational logic Computes the next state Computes the outputs Next

412 views • 26 slides
Finite State Machine (FSM) Consists of: CLK State register S S Next Current

Finite State Machine (FSM) Consists of: CLK State register S S Next Current

Finite State Machine (FSM) Consists of: CLK State register S S Next Current Stores current state State State Loads next state at clock edge Combinational logic Computes the next state Computes the outputs Next

477 views • 25 slides
Light at the end of the tunnel? April 8, 2014 Contents Current state of industry where

Light at the end of the tunnel? April 8, 2014 Contents Current state of industry where

Light at the end of the tunnel? April 8, 2014 Contents Current state of industry where are we today? What is the health of (Swiss) Private Banking? How to cope with long-term challenges? Conclusion McKinsey & Company | 1

844 views • 25 slides
Digital Transformation Big Data & Current production Agile app dev & Private vs. Public

Digital Transformation Big Data & Current production Agile app dev & Private vs. Public

Digital Transformation Big Data & Current production Agile app dev & Private vs. Public analytics environment delivery platforms Cloud management By 2020, ~75% of all Most current IT spend is 1 Car = 4TB Both Private and Public

668 views • 20 slides
Privacy Enhancing Technology and the Right to be Forgotten Michael Kolain Taking on the epic

Privacy Enhancing Technology and the Right to be Forgotten Michael Kolain Taking on the epic

Privacy Enhancing Technology and the Right to be Forgotten Michael Kolain Taking on the epic boss: The right to erasure Right to erasure (right to be forgotten) Art. 17 GDPR (1) The data subject shall have the right to obtain from the

513 views • 16 slides
The Forgotten Art of Anonymous Digital Cash Jonathan Smuggler Logan Before the Chains

The Forgotten Art of Anonymous Digital Cash Jonathan Smuggler Logan Before the Chains

The Forgotten Art of Anonymous Digital Cash Jonathan Smuggler Logan Before the Chains Blockchain currencies were not the first digital non-government money The past is widely forgotten Im here from the past or from

402 views • 23 slides
AIP Private Markets Current Opportunities in Private Equity and Real Estate Vikram

AIP Private Markets Current Opportunities in Private Equity and Real Estate Vikram

AIP Private Markets Current Opportunities in Private Equity and Real Estate Vikram Raju, Partner Asia Pacific Association for Fiduciary Studies | November 30, 2018 CONFIDENTIAL FOR THE EXCLUSIVE USE OF THE ASIA PACIFIC

469 views • 30 slides
Pio Wennubst Like many others, descendant of people suffering during one of the almost forgotten

Pio Wennubst Like many others, descendant of people suffering during one of the almost forgotten

Pio Wennubst Like many others, descendant of people suffering during one of the almost forgotten wars. Currently enjoying a dignifying life with access to health care, education and prosperity. Former manager, researcher, journalist, teacher,

249 views • 5 slides
Salvedicta 1 Education is what survives when what has been learned has been forgotten. B. F.

Salvedicta 1 Education is what survives when what has been learned has been forgotten. B. F.

Salvedicta 1 Education is what survives when what has been learned has been forgotten. B. F. Skinner CSC 210 Floating Elements 2 CSC 210 Announcements 3 BetaWeb is up You should have username/initial password email You

634 views • 36 slides
Current state and potential Current state and potential development of Russian upper air s rface

Current state and potential Current state and potential development of Russian upper air s rface

Current state and potential Current state and potential development of Russian upper air s rface meteorological and air, surface meteorological and climate monitoring networks. Oleg M. Pokrovsky g y Main Geophysical Observatory,

674 views • 40 slides
GlidePath:+ BCBSMs+Private+Exchange+Solu;on + Why+GlidePath?+

GlidePath:+ BCBSMs+Private+Exchange+Solu;on + Why+GlidePath?+

GlidePath:+ BCBSMs+Private+Exchange+Solu;on + Why+GlidePath?+ It#sa&sfies#both#employer#and#employee#needs,# while#providing# predictability,+choice,+and+control.+ 2 GlidePath+Current+State+ Over+10,000+Michigan+residents+are+using+the+

725 views • 13 slides
ASSESSMENT REPORT A HUNDRED YEARS AFTER WE ARE GONE AND FORGOTTEN, THOSE WHO NEVER HEARD OF US

ASSESSMENT REPORT A HUNDRED YEARS AFTER WE ARE GONE AND FORGOTTEN, THOSE WHO NEVER HEARD OF US

BASTROP DEVELOPMENT CODE ASSESSMENT REPORT A HUNDRED YEARS AFTER WE ARE GONE AND FORGOTTEN, THOSE WHO NEVER HEARD OF US WILL BE LIVING WITH THE RESULTS OF OUR ACTIONS. Oliver Wendell Homes, U.S. Supreme Court Justice ZONING HISTORY

379 views • 37 slides
Revascularization : A Forgotten Art Ja James es He Hermil ille ler, MD, MSCAI, FACC St t

Revascularization : A Forgotten Art Ja James es He Hermil ille ler, MD, MSCAI, FACC St t

Optimizing Percutaneous Coronary Interventions Spo Sponsored by y th the Car Cardiovascula lar Res esearch Foundatio ion 21 st st , 2019 Tuesday, May 21 2019 Complete Coronary Revascularization : A Forgotten Art Ja James es He Hermil

1.11k views • 64 slides
Thirty Y Yea ears L Late ter Forgotten Le For Lesson ons Fr From om C Chr hrysler Fed

Thirty Y Yea ears L Late ter Forgotten Le For Lesson ons Fr From om C Chr hrysler Fed

Thirty Y Yea ears L Late ter Forgotten Le For Lesson ons Fr From om C Chr hrysler Fed Federal al R Res eser erve B Bank ank of of Chi hica cago, o, Detr etroit B Branch anch Autom utomotive C Conf onfer eren ence

325 views • 16 slides
Private & State Regulation: Combining Two Approaches for Maximum Effectiveness Professor

Private & State Regulation: Combining Two Approaches for Maximum Effectiveness Professor

Private & State Regulation: Combining Two Approaches for Maximum Effectiveness Professor Matthew Amengual Massachusetts Institute of Technology 1 Overview How can do private and state regulation relate to one another? Fundamentals

510 views • 20 slides
EU State Aid Litigation Public & private State aid enforcement ERA, Brussels, 18 May 2018

EU State Aid Litigation Public & private State aid enforcement ERA, Brussels, 18 May 2018

EU State Aid Litigation Public & private State aid enforcement ERA, Brussels, 18 May 2018 Jacques Derenne Partner, Global Co-Practice Group Leader, Antitrust and Competition Sheppard Mullin, Brussels Professor, University of Lige &

836 views • 45 slides
LRV Wireless Communication Upgrade Project Capital Committee, Sept. 13, 2018 Current State

LRV Wireless Communication Upgrade Project Capital Committee, Sept. 13, 2018 Current State

LRV Wireless Communication Upgrade Project Capital Committee, Sept. 13, 2018 Current State (Kinkisharyo Wi-Fi and Maintenance Workstation) Back Office Link Operations and Maintenance Facility Operations Performance Reporting Private KI

232 views • 7 slides
Posts (and Zuses) forgotten ideas in the Philosophy and History of Computer Science.

Posts (and Zuses) forgotten ideas in the Philosophy and History of Computer Science.

Posts and Zuses forgotten ideas in the Philosophy of Computer Science. L. De Mol Posts (and Zuses) forgotten ideas in the Philosophy and History of Computer Science. Liesbeth De Mol Boole centre for Research in Informatics,

735 views • 36 slides
The Right to be forgotten (RTBF), Privacy, Anonymity and Access to Information Panellists:

The Right to be forgotten (RTBF), Privacy, Anonymity and Access to Information Panellists:

APrIGF 2016 theme: Merging Physical Space with Cyberspace Merged workshop #8 The Right to be forgotten (RTBF), Privacy, Anonymity and Access to Information Panellists: Kyungsin Park (OpenNet Korea) Monika Zalnieriute (University of

255 views • 3 slides

More recommend