Some on this list with interests in security may enjoy these, too... Related: - The AGERE! (Actors and Agents Reloaded) workshop webpage: http://www.alice.unibo.it/xwiki/bin/view/AGERE/
- AmbientTalk (actor language for mobile devices): http://soft.vub.ac.be/amop/ -- Max ---------- Forwarded message ---------- From: Tom Van Cutsem <[email protected]> Date: Thu, Nov 3, 2011 at 12:37 PM Subject: [AGERE! at SPLASH] Talks by Mark Miller To: [email protected] Dear all, During the panel session, Mark Miller showed some slides from a talk he gave at our university (University of Brussels, Belgium) a couple of weeks ago. At the workshop, I promised to forward links to the videos of the full talks when they would become available. See the abstract and links below. How does this relate to actors? Mark talks about capability-based security, which meshes really well with object-oriented, and - in the distributed case - with actor-based programming. Don't worry if you are not an expert on security: Mark explains the issues in a very clear and understandable way. Thanks again to the organizers for a successful AGERE! workshop. Kind regards, Tom Van Cutsem Talk 1/2: Secure Distributed Programming with Object-capabilities in JavaScript Until now, browser-based security has been hell. The object-capability (ocap) model provides a simple and expressive alternative. Google's Caja project uses the latest JavaScript standard, EcmaScript 5, to support fine-grained safe mobile code, solving the secure mashup problem. Dr. SES -- Distributed Resilient Secure EcmaScript -- extends the ocap model cryptographically over the network, enabling RESTful composition of mutually suspicious web services. We show how to apply the expressiveness of object programming to the expression of security patterns, solving security problems normally thought to be difficult with simple elegant programs. Slides: <http://soft.vub.ac.be/events/mobicrant_talks/talk1_ocaps_js.pdf> Video: <http://www.youtube.com/watch?v=w9hHHvhZ_HY> Talk 2/2: Bringing Object-orientation to Security Programming Just as we should not expect our base programming language to provide all the data types we need, so we should not expect our security foundation to provide all the abstractions we need to express security policy. The answer to both is the same: We need foundations that provide simple abstraction mechanisms, which we use to build an open ended set of abstractions, which we then use to express policy. We show how to use EcmaScript 5 to enforce the security latent in object-oriented abstraction mechanisms: encapsulation, message-passing, polymorphism, and interposition. With these secured, we show how to build abstractions for confinement, rights amplification, transitive wrapping and revocation, and smart contracts. Slides: <http://soft.vub.ac.be/events/mobicrant_talks/talk2_OO_security.pdf> Video: <http://www.youtube.com/watch?v=oBqeDYETXME> -- You received this message because you are subscribed to the Google Groups "AGERE! at SPLASH" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/agere-at-splash?hl=en.
_______________________________________________ fonc mailing list [email protected] http://vpri.org/mailman/listinfo/fonc
