Name: PWL #13: Survivable Key Compromise in Software Update Systems
Start: 2015-11-12T18:30:00-08:00
End: 2015-11-12T21:00:00-08:00
Location: Whitepages

Ryan Cox will cover "Survivable Key Compromise in Software Update Systems". What happens when your signing keys are compromised or checked into GitHub? He will demo Notary, Docker's implementation of TheUpdateFramework; described in the paper. TUF is a system that grew out of Tor and is capable of surviving key compromises as well as several other issues in current update managers.

Paper: https://isis.poly.edu/~jcappos/papers/samuel_tuf_ccs_2010.pdf

Samuel, Justin, et al. "Survivable key compromise in software update systems." Proceedings of the 17th ACM conference on Computer and communications security. ACM, 2010.

David Murray

Ryan Cox

Papers We Love @ Seattle

Technology

Intellectual Curiosity

Intellectual Discussions

Learning

Open Source

Engineering

Computer Science

Education & Technology

New Technology

Research & Development Engineer

Computer Programming

Technology Professionals

Researchers

PWL #13: Survivable Key Compromise in Software Update Systems

Whitepages

Share

Papers We Love @ Seattle

PWL #13: Survivable Key Compromise in Software Update Systems

Papers We Love @ Seattle

Details

Members are also interested in