Confirmed users, Bureaucrats and Sysops emeriti
419
edits
Security:Bibliography: Difference between revisions
Jump to navigation
Jump to search
→People
(→People) |
(→People) |
||
| Line 11: | Line 11: | ||
=== People === | === People === | ||
[[http://www.ics.uci.edu/~franz/ Michael Franz]], who is at UC Irvine, spoke at [[http://www.research.ibm.com/vee04/talks.html an IBM virtual machine conference]] two years ago where I spoke on Firefox and Mozilla's VM needs. He was kind enough to stop by Mozilla in early March of this year and speak on his work. See http://www.ics.uci.edu/%7Efranz/Site/research.html for links to his | [[http://www.ics.uci.edu/~franz/ Michael Franz]], who is at UC Irvine, spoke at [[http://www.research.ibm.com/vee04/talks.html an IBM virtual machine conference]] two years ago where I spoke on Firefox and Mozilla's VM needs. He was kind enough to stop by Mozilla in early March of this year and speak on his past and current work. See http://www.ics.uci.edu/%7Efranz/Site/research.html for links to his publications. | ||
Michael's focus on virtual machines and compilers points the way toward real browser as well as OS security, transcending the current mode among browser implementors of hacking and patching memory-unsafe C++ code. The most-trusted computing base must not be megalines of code -- it should be the compiler, VM, and security module, at tens or at most hundreds of KSLOCs. | Michael's focus on virtual machines and compilers points the way toward real browser as well as OS security, transcending the current mode among browser implementors of hacking and patching memory-unsafe C++ code. The most-trusted computing base must not be megalines of code -- it should be the compiler, VM, and security module, at tens or at most hundreds of KSLOCs. | ||