题目: Security Problems and Solutions from the Data Angle
The fast evolution of Mobile, Web, and Cloud has provided us with a new platform for information services and computing. This platform raises new challenges to system and data security. It is a complex platform consisting of many different types of systems. The security policies, software qualities, etc., are diverse, and cannot be tightly controlled by a single standard. Traditional security mechanisms, such as access control and isolation of privileges, are not sufficient to provide sufficient protection in such a platform. In this talk, we look into the security problems and solutions of this platform from the data angle: how to provide users with strong data-oriented protection, where data are protected by users' security requirement even when part of the platform is not trusted. We will discuss our solution in the mobile and web platform. In addition, we will also discuss our recent work in data-oriented exploits in the traditional desktop platform.
Dr. LIANG Zhenkai is an Associate Professor of the School of Computing, National University of Singapore (NUS). His main research interests are in system and software security, web security, mobile security, and program analysis. He has served as the technical program committee members of many system security conferences, including the ACM Conference on Computer and Communications Security (CCS), USENIX Security Symposium and the Network and Distributed System Security Symposium (NDSS). He is also an associate editor of the IEEE Transaction on Dependable and Secure Computing. As a co-author, he received the Best Paper Award in ICECCS 2014, the Best Paper Award in W2SP 2014, the ACM SIGSOFT Distinguished Paper Award at ESEC/FSE 2009, the Best Paper Award at USENIX Security Symposium 2007, and the Outstanding Paper Award at ACSAC 2003. He also won the Annual Teaching Excellence Award of NUS in 2014 and 2015. He received his Ph.D. degree in Computer Science from Stony Brook University in 2006, and B.S. degrees in Computer Science and Economics from Peking University in 1999.