Friday Oct 09, 2009

Oracle OpenWorld - Protecting Oracle with Solaris Security - Talk and Demonstration

Oracle OpenWorld 2009Glenn Faden and I put together a presentation and elaborate demonstration system where we show off how the Solaris Security features can be used to really lock down an Oracle Database installation. It is entitled Protecting Applications with Built-In Solaris Security Features (pdf) (Session S312612).

Glenn presented the talk at Oracle OpenWorld in San Francisco on Monday October 12, 2009 14:30-15:30 in the Marriott Hotel adjacent to Moscone Center in Salon 6. Together with additional demo booth staff we also presented the demonstration on a live, Niagara II-based server (Sun SPARC Enterprise T5220) in the Sun demo booth #1101, Moscone South Hall.

(Open)Solaris Security Summit - Nov. 3, 2009 - Co-located with Usenix LISA

(Open)Solaris Security SummitI am co-organizing the (Open)Solaris Security Summit, a free, one day event on November 3, 2009 co-located with the Usenix LISA 2009 conference in the Baltimore Marriott Waterfront, Baltimore, MD.  It is an all-day event and free to attend (Register Here). We have a very exciting program lined up with Bill Cheswick from AT&T as our keynote speaker, followed by technical talks on various Solaris security technologies, such as Solaris Trusted Extensions, Encrypted Storage, and a case study how to really lock down networked services with the wealth of Solaris security mechanisms.

[Read More]

Wednesday May 27, 2009

Solaris Security Demonstrations

In previous posts, I presented a few tools that can be used to generate technology demonstrations to a broader audience. By popular demand, I am posting now the three demonstrations I have developed and have been giving to various audiences around the world at Sun's Technology Developer Conferences (TechDays.)

You can access these flash-based demonstrations here:

[Read More]

Monday Dec 15, 2008

Any Day now... Solaris Security Essentials Book on Safari Books Online

Solaris Security Essentials A couple of us in the Solaris Security engineering organization at Sun Microsystems have contributed to a book on Solaris Security. It covers the state of the art as of the Solaris Enterprise release, Solaris 10, Update 5.
A copy was alread released on Safari Books Online

Click HERE for early access!

[Read More]

Thursday Dec 11, 2008

New Sun BluePrint entitled Security Advantages of the Solaris Zones Software

Security Advantages of the Solaris Zones SoftwareCheck out my new Sun Blueprint (pdf) entitled Security Advantages of the Solaris Zones Software. It provides a hands-on introduction to the Solaris Zones architecture and discusses in details some of the security advantages of OS virtualization in the context of Solaris zones.

Schuba, Christoph. Security Advantages of the Solaris Zones Software. Sun BluePrints Online, Part No 820-7136-10. December 2008.

[Read More]

Friday Oct 31, 2008

Scripting technology demonstrations in (Open)Solaris - V.2

This blog entry represents an update to my earlier blog on "Scripting technology demonstrations in (Open)Solaris". I created this entry, because I rewrote the software to include new functionality and to no longer require a C compiler. Everything's in Perl now. Some of the text below is duplicated from my original blog entry, but I figured it's easier on readers to find all information in a single blog entry rather than having to jump back and forth. For the impatient readers, here's what's new:

  • Ease of portability: demotools are now completely written in Perl - no more C programs that require compilation
  • The demo tools routines are a Perl module now, easily integrated into your program

[Read More]

Thursday Oct 30, 2008

New Book Chapter on Solaris Trusted Extensions

Glenn Faden and I recently contributed a book chapter on Solaris Trusted Extensions (pdf version)  to Trent Jaeger's new book on Operating System Security, published by Morgan & Claypool Publishers. This book is part of the Synthesis Lectures on Information Security, Privacy and Trust. Check it out!
  • Jaeger, Trent. Operating System Security. Synthesis Lectures on Information Security, Privacy and Trust. Morgan & Claypool Publishers. 2008.

[Read More]

Thursday Oct 09, 2008

Scripting technology demonstrations in (Open)Solaris

Several folks have asked me to post the demo scripts and tools I use when presenting (Open)Solaris talks that contain live demonstrations. Initially I hesitated, primarily because these scripts and tools are embarassingly simple. Yet, because I was asked by several of folks, I decided to post them here. If you make improvements to these tools or scripts, please send me the code as I am planning on continuing to use (and document improvements of) this approach until I find something better.[Read More]

Wednesday Sep 24, 2008

New Virtualization Presentation for TechDays 2009

And I am involved with another presentation that will be given at the 2009 Sun Technology Developer Days, short TechDays, events across the globe. Nicolas Droux and I co-authored it, borrowing heavily from older presentations. It is entitled "Virtualization from the Desktop to the Enterprise". I will be delivering this talk in São Paulo, Brazil next week, back to back with the "Developing and Deploying Securely" presentation. (Read more about that presentation in my blog entry New Solaris Security Presentation for TechDays 2009.)

[Read More]

Wednesday Sep 17, 2008

New Solaris Security Presentation for TechDays 2009

I just finished putting together the presentation that will be given at the 2009 Sun Technology Developer Days, short TechDays, events across the globe. I'll be giving the presentation in a few weeks in São Paulo, Brazil, others will deliver it in Cities such as Seoul, Beijing, and London. If you've never been to TechDays, check out the web site - these (usually free) events are a great opportunity to learn the latest and hottest Sun technologies.  You can download the slides in PDF as well as their OpenOffice source format ODP. The latter version includes extensive sets of notes that help to understand the slides. The presentation includes a lot of code and administration examples.

If you want to learn about (Open)Solaris RBAC, Privileges, the Cryptographic Framework, as well as a number of ongoing OpenSolaris security projects, this presentation is for you!

[Read More]

Tuesday Sep 16, 2008

Towards Running Trusted Extension with OpenSolaris 2008.11

This blog entry is related to the one that Glenn Faden published recently, entitled "Running Trusted Extensions with opensolaris.2008.05". I updated Glenn's posting to describe how to get Trusted Extensions running on the OpenSolaris 2008.11 distribution.
The release 2008.11 is scheduled for  November this year, hence the name...

Now, since that's not actually out yet, I am starting with the OpenSolaris 2008.05 distribution and am moving to the OpenSolaris development build 97. I will update this blog as newer builds integrate some of the work-arounds described below, to keep the instructions minimal and as simple as possible. Whenever I know the build number for which the fix is expected, I will add them to the text below.

[Read More]



« July 2016