http://kernsec.org/wiki/index.php?action=history&feed=atom&title=Linux_Security_Summit_2014%2FAbstracts%2FDrysdale 2026-04-08T17:18:41Z Revision history for this page on the wiki MediaWiki 1.36.1 http://kernsec.org/wiki/index.php?title=Linux_Security_Summit_2014/Abstracts/Drysdale&diff=3506&oldid=prev 2014-07-15T16:06:43Z

<p>New page: == Title == Capsicum on Linux == Presenter == David Drysdale, Google == Abstract == Capsicum is a lightweight security framework, blending concepts from object-capability security wit...</p> <p><b>New page</b></p><div>== Title ==<br /> <br /> Capsicum on Linux<br /> <br /> == Presenter ==<br /> <br /> David Drysdale, Google<br /> <br /> == Abstract ==<br /> <br /> Capsicum is a lightweight security framework, blending concepts from<br /> object-capability security with POSIX operating system semantics.<br /> <br /> In particular, Capsicum allows the operations that can be performed on<br /> individual file descriptors to be restricted to those specified by a set of<br /> fine-grained rights.<br /> <br /> Capsicum also implements capability mode, which restricts a process from<br /> using system calls that access global namespaces (such as the directory<br /> hierarchy or IP:port space), and so prevents access to any new resources.<br /> <br /> The combination of these features allows security-aware applications to sandbox<br /> themselves in a precise manner, without relying on external policy.<br /> <br /> Capsicum was originally created at the University of Cambridge Computing<br /> Laboratory [1] and implemented in FreeBSD 9.0. Google is currently<br /> implementing equivalent functionality for the Linux kernel.<br /> <br /> This discussion topic covers the core concepts of Capsicum, together with the<br /> specific issues arising from the Linux kernel implementation.<br /> <br /> <br /> [1] http://www.cl.cam.ac.uk/research/security/capsicum/papers/2010usenix-security-capsicum-website.pdf</div>

JamesMorris