BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Memento EPFL//
BEGIN:VEVENT
SUMMARY:Software testing and hardware isolation in modern systems.
DTSTART:20230612T140000
DTEND:20230612T150000
DTSTAMP:20260407T042216Z
UID:f2e1d24d8918486836aa016f8e8bec2df9bff1c65b2d7e726c19bff4
CATEGORIES:Conferences - Seminars
DESCRIPTION:Flavio Toffalini PostDoc in the HexHive group at EPFL\nThe aim
  of the talk is to prepare for hiring interviews coming up soon.\n\nAbstra
 ct:\nAdversaries exploit vulnerabilities to compromise systems. For instan
 ce\, a vulnerability in a Web browser sandbox may allow an attacker to lea
 k private data. Reducing the number of bugs improves security guarantees\;
  enforcing the principle of least privileges limits the potential damage o
 f any remaining bug.\n\nWe will discuss two key aspects of system security
 : automated security testing and hardware isolation. Improving testing pre
 vents bugs from reaching production environments. Modern hardware isolatio
 n technologies provide secure enclaves to store critical software and data
 \, enabling the enforcement of least privileges. Enclaves assume a strong 
 attacker model and are designed to resist against fully compromised system
 s. I will first introduce automatic testing\, while the second part will r
 evolve around new challenges regarding automatic testing and technologies 
 for hardware isolation.\n\nBio:\nFlavio Toffalini is a PostDoc in the HexH
 ive group at EPFL. He works on system security in the context of trusted a
 pplications\, automatic software testing\, and exploit mitigation. Specifi
 cally\, he studies threats and mitigations for SGX and TEE technologies\, 
 and designs novel fuzzing techniques. His background ranges from software 
 engineering to mitigation and bug finding. He also serves on the program c
 ommittee for conferences such as NDSS\, Usenix SEC AE\, and DIMVA.\n 
LOCATION:BC 420 https://plan.epfl.ch/?room==BC%20420
STATUS:CONFIRMED
END:VEVENT
END:VCALENDAR