10_17_13 - Stanford University Networking Seminar
Download
Report
Transcript 10_17_13 - Stanford University Networking Seminar
Bromium vSentry
A d r i a n Ta y l o r
Director, Mobile
Paid
3644-2276-1234-5678
Zero-day price list
Zero-day
Adobe Reader
$5,000-$30,000
Flash, Java
$40,000-$100,000
Word
$50,000-$100,000
Internet Explorer
$80,000-$200,000
iOS
$100,000-$250,000
Source: http://www.forbes.com/sites/andygreenberg/2012/03/23/shopping-for-zero-days-an-price-list-for-hackers-secret-software-exploits/
Bromium Confidential
DEMO
Hardware-isolates
each untrusted
Windows task
Based on Xen with a
tiny, secure code base
Hardware
Virtualization
(VT-x)
Lightweight, fast,
hidden, with an
unchanged native UX
Microvisor
Fully integrated into the
desktop user experience
Uses I/O Virtualization
VT-d, TXT & TPM if
available
DEMO
Hardware
Kernel
OS Libs / Utils
Applications
Desktop
Mutually isolates
untrustworthy tasks from
the Desktop, & each other
Untrusted Tasks
http://www.facebook.com
Micro-VMs have “need
to know” access to
files, networks, and the
user’s desktop
Micro-VMs execute
“Copy on Write”
Malware is
automatically
discarded
LIVE ATTACK VISUALIZATION
AND ANALYSIS : LAVA
DEMO
Desktop, Laptop, Tablet and Smartphone
2012
Bromium Confidential
2013
Future
Thank you