Asbestos, a new prototype operating system, provides novel labeling and isolation mechanisms that help contain the effects of exploitable software flaws. Applications can express a wide range of policies with Asbestos's kernel-enforced label mechanism, including controls on inter-process communication and system-wide information flow. A new event process… (More)
Though system security would benefit if programmers routinely followed the principle of least privilege , the interfaces exposed by operating systems often stand in the way. We investigate why modern OSes thwart secure programming practices and propose solutions.
Subjects first completed social desirability and anxiety personality scales and then read a story about a woman meeting her brother for lunch. Some subjects were then told that the story involved sexual abuse. A week later all subjects took a multiple-choice memory test over the story. The results indicated that subjects categorized as repressors based on… (More)