In early February, I gave a talk at ShmooCon.The content was the same as my talk at ACM Reflections, a student-run conference at the University of Illinois Champaign-Urbana. ShmooCon sells out anyway :) so I did not bother to blog about it.
While there, Chema (a Microsoft MVP, and another speaker at ShmooCon) asked me for a virtual interview, and it is now live on his blog.
Anonymous comments are disabled
About crispincowan
"Reliable software does what it is supposed to. Secure software does what it is supposed to, and nothing else." -- Ivan Arce
Thus software security is very simple: only use perfect software :-)
There being a supply shortage of perfect software, to secure systems we must do something else to ensure that software does not mis-behave when fed "interesting" input by attackers.
At extreme detail, we can specify exactly everything the program may do. This is called "the code" and we already know we can't get that right.. So we must abstract what is allowed and what is not into useful classifications.
But if we get these classifications wrong, say "no" to access too often, or at the wrong times, security becomes painful. If we fix that by making security complicated, it is still painful. Which is why most users choose no security and hope for the best.
Designing secure solutions that are effective AND easy to live with is what I do. I invented the StackGuard method of compiled buffer overflow protection, now used in both GCC and Microsoft Visual Studio. I designed the Immunix/Novell AppArmor application security system: standard access control security, with revolutionary ease of use.
I now work for Microsoft, applying these same principles to the problem of enhancing Windows security.
